CVE-2025-41048 | appRain CMF 4.0.5 admin data[Addon][layouts_except cross site scripting

A vulnerability categorized as problematic has been discovered in appRain CMF 4.0.5. This vulnerability affects unknown code of the file /apprain/developer/addons/update/admin. The manipulation of the argument data[Addon][layouts_except results in cross site scripting.

This vulnerability is reported as CVE-2025-41048. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More