CVE-2025-41055 | appRain CMF 4.0.5 dialogs data[Addon][layouts]/data[Addon][layouts_except] cross site scripting

A vulnerability classified as problematic was found in appRain CMF 4.0.5. This impacts an unknown function of the file /apprain/developer/addons/update/dialogs. The manipulation of the argument data[Addon][layouts]/data[Addon][layouts_except] results in cross site scripting.

This vulnerability was named CVE-2025-41055. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More