2 matches found
CVE-2024-57770
JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component apply/saveoaContractApply.id...
PT-2025-3564 · Jfinaloa · Jfinaloa
Name of the Vulnerable Software and Affected Versions: JFinalOA versions prior to v2025.01.01 Description: A SQL injection issue was discovered in the component apply/saveoaContractApply.id. This allows for potential SQL injection attacks. Recommendations: For versions prior to v2025.01.01, updat...