CVE-2025-41057 | appRain CMF 4.0.5 rich_text_editor data[Addon][layouts]/data[Addon][layouts_except] cross site scripting

A vulnerability, which was classified as problematic, was found in appRain CMF 4.0.5. Affected by this vulnerability is an unknown functionality of the file /apprain/developer/addons/update/rich_text_editor. Such manipulation of the argument data[Addon][layouts]/data[Addon][layouts_except] leads to cross site scripting.

This vulnerability is referenced as CVE-2025-41057. It is possible to launch the attack remotely. No exploit is available.VulDB Recent EntriesRead More