Description
JFinalcms 5.0.0 is vulnerable to Cross Site Scripting (XSS) via carousel image editing.
Remediation
References
https://github.com/Jarvis-616/cms/blob/master/There%20is%20a%20storage%20type%20XSS%20for%20carousel%20image%20editing.md
Related Vulnerabilities
CVE-2023-26149 Vulnerability in npm package quill-mention
CVE-2017-16082 Vulnerability in npm package pg
CVE-2021-23509 Vulnerability in npm package json-ptr
CVE-2021-28170 Vulnerability in maven package org.glassfish:jakarta.el
CVE-2019-0194 Vulnerability in maven package org.apache.camel:camel-core