2 matches found
CVE-2022-38276
CVE-2022-38276 affects JFinal CMS 5.1.0 and is a SQL Injection vulnerability exploitable via the /admin/foldernotice/list endpoint. The root cause details are not fully described in the provided documents beyond the injection via that API path. The CVSSv3.1 base score is 7.2 (High) with Confident...
CVE-2022-38276
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/foldernotice/list...