2025-09-04 11:11:08
INCIBE
PUBLISHED
A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, through the data[AppReportCode][id] and data[AppReportCode][name] parameters in /apprain/appreport/manage/.