CVE-2024-1257

Name of the Vulnerable Software and Affected Versions Jspxcms version 10.2.0

Description A vulnerability was found in Jspxcms, classified as problematic. It affects an unknown function of the file /ext/collect/find text.do. The manipulation leads to cross site scripting and can be launched remotely.

Recommendations For Jspxcms version 10.2.0, as a temporary workaround, consider restricting access to the /ext/collect/find text.do file until a patch is available. Avoid using this file in production environments until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.