Vulnerabilities

CVE-2026-2200

by Fred · 09/02/2026

A weakness has been identified in heyewei JFinalCMS 5.0.0. This affects an unknown function of the file /admin/admin/save of the component API Endpoint. Executing a manipulation can lead to cross site scripting. The attack can be launched remotely. The exploit has been made available to the public and could be used for attacks.

More information : https://github.com/zh-010/my_cve/blob/main/heyewei%20JFinalCMS%20XSS.md

Similar

Tags: Cybersecurity Alert