3 matches found
CVE-2022-33114
Jfinal CMS v5.1.0 was discovered to contain a SQL injection vulnerability via the attrVal parameter at /jfinalcms/system/dict/list...
CVE-2022-33114
Jfinal CMS v5.1.0 was discovered to contain a SQL injection vulnerability via the attrVal parameter at /jfinalcms/system/dict/list...
CVE-2022-33114
CVE-2022-33114 affects Jfinal CMS v5.1.0. A SQL injection vulnerability exists in the attrVal parameter used by /jfinal_cms/system/dict/list due to insufficient input validation, enabling potentially unauthorized SQL execution. Public records (NVD/NVD-derived entries, Red Hat) annotate this as a ...