3 matches found
GHSA-279P-PC38-XX4P JFinal file validation vulnerability
In JFinal cos before 2019-08-13, as used in JFinal 4.4, there is a vulnerability that can bypass the isSafeFile function: one can upload any type of file. For example, a .jsp file may be stored and almost immediately deleted, but this deletion step does not occur for certain exceptions...
CVE-2012-6713
creationtimestamp| type| source ---|---|--- 2019-08-13 20:38:18+00:00| seen| https://t.me/cibsecurity/6105...
CVE-2015-9299
creationtimestamp| type| source ---|---|--- 2019-08-13 20:38:11+00:00| seen| https://t.me/cibsecurity/6097...