Description
JFinalcms 5.0.0 is vulnerable to Cross Site Scripting (XSS) in the site management office.
Remediation
References
https://github.com/yukino-hiki/CVE/blob/main/3/There%20is%20a%20storage%20type%20xss%20in%20the%20site%20management%20office.md
Related Vulnerabilities
CVE-2019-6284 Vulnerability in maven package org.webjars.npm:node-sass
CVE-2018-14042 Vulnerability in maven package org.webjars.npm:bootstrap
CVE-2019-10773 Vulnerability in npm package @pnpm/package-bins
CVE-2015-0250 Vulnerability in maven package org.eclipse.birt.runtime.3_7_1:org.apache.batik.dom
CVE-2018-12542 Vulnerability in maven package io.vertx:vertx-web