CVE-2025-41038 | appRain CMF 4.0.5 add data[Group][name] cross site scripting

A vulnerability described as problematic has been identified in appRain CMF 4.0.5. This issue affects some unknown processing of the file /apprain/admin/managegroup/add/. Such manipulation of the argument data[Group][name] leads to cross site scripting.

This vulnerability is uniquely identified as CVE-2025-41038. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More