CVE-2025-41056 | appRain CMF 4.0.5 hysontable data[Addon][layouts]/data[Addon][layouts_except] cross site scripting

A vulnerability, which was classified as problematic, has been found in appRain CMF 4.0.5. Affected is an unknown function of the file /apprain/developer/addons/update/hysontable. This manipulation of the argument data[Addon][layouts]/data[Addon][layouts_except] causes cross site scripting.

The identification of this vulnerability is CVE-2025-41056. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More