Security Advisory

CVE-2024-22492

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-01-12 00:00:00

Last updated 2025-06-03 14:06:15

Assigner mitre

State PUBLISHED

Description

A stored XSS vulnerability exists in JFinalcms 5.0.0 via the /gusetbook/save contact parameter, which allows remote attackers to inject arbitrary web script or HTML.

← Browse all CVEs View on cve.org ↗