Security Advisory

CVE-2024-22497

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-01-23 00:00:00

Last updated 2025-05-30 14:21:05

Assigner mitre

State PUBLISHED

Description

Cross Site Scripting (XSS) vulnerability in /admin/login password parameter in JFinalcms 5.0.0 allows attackers to run arbitrary code via crafted URL.

← Browse all CVEs View on cve.org ↗