JFinal is a Java language based WEB ORM open source framework. jFinal cms in versions prior to 5.1.0 there is a denial of service vulnerability , the vulnerability stems from the application of regular expressions on the insecure handling of user input , the attacker can use the vulnerability specially requested to trigger a denial of service attack .
CPE | Name | Operator | Version |
---|---|---|---|
jfinal jfinal | lt | 5.1.0 |