Lucene search
+L

4 matches found

NVD
NVD
added 2025/04/04 6:15 a.m.37 views

CVE-2025-3214

A vulnerability has been found in JFinal CMS up to 5.2.4 and classified as problematic. Affected by this vulnerability is the function engine.getTemplate of the file /readTemplate. The manipulation of the argument template leads to path traversal. The attack can be launched remotely. The exploit...

5.3CVSS0.00457EPSS
Exploits0References4
CVE
CVE
added 2025/04/04 6:0 a.m.67 views

CVE-2025-3214

CVE-2025-3214 affects JFinal CMS up to version 5.2.4. The vulnerability resides in the readTemplate function’s engine.getTemplate, where manipulating the template argument enables path traversal. Exploitation can be remote, and public proofs exist, but the real existence of the vulnerability is d...

5.3CVSS7.1AI score0.00457EPSS
Exploits0References4
Cvelist
Cvelist
added 2025/04/04 6:0 a.m.18 views

CVE-2025-3214 JFinal CMS readTemplate engine.getTemplate path traversal

A vulnerability has been found in JFinal CMS up to 5.2.4 and classified as problematic. Affected by this vulnerability is the function engine.getTemplate of the file /readTemplate. The manipulation of the argument template leads to path traversal. The attack can be launched remotely. The exploit...

5.3CVSS0.00457EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/04/04 6:0 a.m.11 views

CVE-2025-3214 JFinal CMS readTemplate engine.getTemplate path traversal

A vulnerability has been found in JFinal CMS up to 5.2.4 and classified as problematic. Affected by this vulnerability is the function engine.getTemplate of the file /readTemplate. The manipulation of the argument template leads to path traversal. The attack can be launched remotely. The exploit...

5.3CVSS7.1AI score0.00457EPSS
Exploits0References4
Rows per page
Query Builder