In applications using jfinal 4.9.08 and below, there is a deserialization vulnerability when using redis,may be vulnerable to remote code execute
CPE | Name | Operator | Version |
---|---|---|---|
jfinal | eq | jfinal-1.5 | |
jfinal | eq | jfinal-3.7 | |
jfinal | eq | jfinal-3.5 | |
jfinal | eq | jfinal-4.9.02 | |
jfinal | eq | jfinal-4.9.06 | |
jfinal | eq | jfinal-3.1 | |
jfinal | eq | jfinal-1.8 | |
jfinal | eq | jfinal-1.2 | |
jfinal | eq | jfinal-4.7 | |
jfinal | eq | jfinal-3.2 |