← Back to CVE List
CVE-2024-22494
Published:
2024-01-12T16:15Z
Last Modified:
2024-11-21T08:56Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
A stored XSS vulnerability exists in JFinalcms 5.0.0 via the /gusetbook/save mobile parameter, which allows remote attackers to inject arbitrary web script or HTML. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt