Rabb1Ter

**Name of the Vulnerable Software and Affected Versions** JFinalCMS version 5.0.0 **Description** A cross-site scripting (XSS) issue was found in the column management department. **Recommendations** For JFinalCMS version 5.0.0, update to a version that addresses the XSS issue in the column management department. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** JFinalCMS version 5.0.0 **Description** A cross-site scripting (XSS) issue was found in the model management department. This type of issue allows attackers to inject malicious scripts into content from otherwise trusted websites. **Recommendations** For JFinalCMS version 5.0.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** JFinalCMS version 5.0.0 **Description** A cross-site scripting (XSS) issue was found in the navigation management department of the software. This type of issue allows attackers to inject malicious scripts into content from otherwise trusted websites. **Recommendations** For JFinalCMS version 5.0.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.