Products
Jfinalcms
- 5.0.0
Source
cve@mitre.org
Tags
CVE-2023-51254 details
Published : April 29, 2024, 6:15 p.m.
Last Modified : April 29, 2024, 6:15 p.m.
Last Modified : April 29, 2024, 6:15 p.m.
Description
Cross Site Scripting vulnerability in Jfinalcms v.5.0.0 allows a remote attacker to execute arbitrary code via a crafted script to the friendship link component.
CVSS Score
| 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
|---|
Weakness
| Weakness | Name | Description |
|---|
References
| URL | Source |
|---|---|
| https://github.com/yukino-hiki/CVE/blob/main/4/There%20is%20a%20stored%20xss%20at%20the%20friendship%20link.md | cve@mitre.org |
This website uses the NVD API, but is not approved or certified by it.