Lucene search
GoogleOSV:CVE-2021-40639HistorySep 15, 2021 - 10:15 p.m.
CVE-2021-40639
2021-09-1522:15:10
Google
osv.dev
8
Improper access control in Jfinal CMS 5.1.0 allows attackers to access sensitive information via /classes/conf/db.properties&config=filemanager.config.js.
| CPE | Name | Operator | Version |
|---|---|---|---|
| jfinal_cms | eq | 3.1.1 | |
| jfinal_cms | eq | 4.1.2 | |
| jfinal_cms | eq | 3.1.0 | |
| jfinal_cms | eq | 4.7.0 | |
| jfinal_cms | eq | 5.1.0 | |
| jfinal_cms | eq | 4.5.0 | |
| jfinal_cms | eq | 4.0.0 | |
| jfinal_cms | eq | 2.9.2 | |
| jfinal_cms | eq | 2.0.0 | |
| jfinal_cms | eq | 4.1.5 |
Related
cvelist
cvelist
CVE-2021-40639
2021-09-15 21:17:11
cve
cve
CVE-2021-40639
2021-09-15 22:15:10
nvd
nvd
CVE-2021-40639
2021-09-15 22:15:10
prion
prion
Improper access control
2021-09-15 22:15:00