2 matches found
CVE-2021-40645
creationtimestamp| type| source ---|---|--- 2022-03-31 00:17:38+00:00| seen| https://t.me/cibsecurity/39874...
CVE-2021-40645
glorylion JFinalOA contains an SQL injection in the defkey parameter of FlowTaskController.getHaveDoneTaskDataList. The root cause is improper handling of the defkey input, enabling arbitrary SQL execution with potential HIGH confidentiality impact. Affected versions/details are not provided in t...