Jarvis-616

**Name of the Vulnerable Software and Affected Versions** JFinalcms version 5.0.0 **Description** The issue is related to Cross Site Scripting (XSS) via Label management editing. This means an attacker could potentially inject malicious scripts into the website, affecting users who access the edited labels. **Recommendations** For JFinalcms version 5.0.0, update to a version that fixes the Cross Site Scripting (XSS) issue via Label management editing, however, at the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to the Label management editing feature to minimize the risk of exploitation.