5 matches found
CVE-2022-38276
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/foldernotice/list...
CVE-2022-38276
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/foldernotice/list...
CVE-2022-38276
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/foldernotice/list...
CVE-2022-38276
CVE-2022-38276 affects JFinal CMS 5.1.0 and is a SQL Injection vulnerability exploitable via the /admin/foldernotice/list endpoint. The root cause details are not fully described in the provided documents beyond the injection via that API path. The CVSSv3.1 base score is 7.2 (High) with Confident...
JFinal SQL注入漏洞
JFinal is a Java-based WEB + ORM open source framework. JFinal CMS version 5.1.0 has a security vulnerability , the vulnerability stems from /admin/foldernotice/list SQL injection vulnerability...