CVE-2025-41040

Vulnerability Description

A vulnerability has been discovered in appRain CMF version 4.0.5, consisting of a stored authenticated XSS due to a lack of proper validation of user input, through the 'data[code]', 'data[lang][0][key]', 'data[lang][0][value]', 'data[lang][1][key]' and 'data[title]' parameters in /apprain/developer/language/lipsum.xml.

Vulnerability Details

Published Date

September 04, 2025

Last Modified

September 04, 2025

Source

NVD

CVE-2025-41040

Vulnerability Description

Vulnerability Details

Discussion (0)

Add Comment