JFinalcms 5.0.0 is vulnerable to Cross Site Scripting (XSS) via carousel image editing.
jfinalcms project jfinalcms 5.0.0