Lucene search
K

45 matches found

NVD
NVD
added 2024/12/02 9:15 p.m.25 views

CVE-2024-53477

JFinal CMS 5.1.0 is vulnerable to Command Execution via unauthorized execution of deserialization in the file ApiForm.java...

9.8CVSS0.00847EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/11/28 12:0 a.m.4 views

PT-2023-30467 · Jflyfox · Jfinalcms

Name of the Vulnerable Software and Affected Versions: jflyfox jfinalCMS version 5.1.0 Description: The issue allows a remote attacker to execute arbitrary code via a crafted script to the "login.jsp" component in the template management module. Recommendations: For jflyfox jfinalCMS version 5.1....

9.8CVSS9.6AI score0.01273EPSS
Exploits1References5
Prion
Prion
added 2023/06/16 6:15 p.m.19 views

Arbitrary file deletion

jfinal CMS 5.1.0 has an arbitrary file read vulnerability...

5CVSS7.5AI score0.00799EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/10/26 6:15 p.m.13 views

Sql injection

JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/advicefeedback/list...

6.5CVSS9AI score0.01009EPSS
Exploits2References2Affected Software1
Vulnrichment
Vulnrichment
added 2022/10/26 12:0 a.m.11 views

CVE-2022-37202

JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/advicefeedback/list...

9.1AI score0.01009EPSS
Exploits2References2
Cvelist
Cvelist
added 2022/10/26 12:0 a.m.26 views

CVE-2022-37202

JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/advicefeedback/list...

9.3AI score0.01009EPSS
Exploits2References2
Cvelist
Cvelist
added 2022/10/13 12:0 a.m.19 views

CVE-2022-37208

JFinal CMS 5.1.0 is vulnerable to SQL Injection. These interfaces do not use the same component, nor do they have filters, but each uses its own SQL concatenation method, resulting in SQL injection...

9.3AI score0.01077EPSS
Exploits2References2
CVE
CVE
added 2022/10/13 12:0 a.m.59 views

CVE-2022-37208

Technical details about CVE-2022-37208 are not publicly available in the provided connected documents. The description notes SQL injection in JFinal CMS 5.1.0, but there are no concrete technical specifics, exploits, fixes, or affected components in the supplied sources. Monitor for updates.

8.8CVSS9AI score0.01077EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2022/09/27 1:12 p.m.20 views

CVE-2022-37209

JFinal CMS 5.1.0 is affected by: SQL Injection. These interfaces do not use the same component, nor do they have filters, but each uses its own SQL concatenation method, resulting in SQL injection...

9.4AI score0.01153EPSS
Exploits3References2
Prion
Prion
added 2022/09/15 4:15 p.m.21 views

Sql injection

JFinal CMS 5.1.0 is vulnerable to SQL Injection...

6.5CVSS8.8AI score0.01154EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2022/09/15 3:3 p.m.26 views

CVE-2022-37201

JFinal CMS 5.1.0 is vulnerable to SQL Injection...

9.1AI score0.01154EPSS
Exploits2References2
OSV
OSV
added 2022/09/15 2:34 p.m.24 views

CVE-2022-37207

JFinal CMS 5.1.0 is affected by: SQL Injection. These interfaces do not use the same component, nor do they have filters, but each uses its own SQL concatenation method, resulting in SQL injection...

8.8CVSS7.9AI score0.01154EPSS
Exploits2References4
NVD
NVD
added 2022/09/09 2:15 p.m.13 views

CVE-2022-38286

JFinal CMS 5.1.0 is vulnerable to SQL Injection via /system/role/list...

7.2CVSS0.00874EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/09/09 2:15 p.m.4 views

CVE-2022-38281

JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/site/list...

7.2CVSS5.9AI score0.00874EPSS
Exploits1References2
NVD
NVD
added 2022/09/09 2:15 p.m.27 views

CVE-2022-38277

JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/folderrollpicture/list...

7.2CVSS0.00874EPSS
Exploits1References1
NVD
NVD
added 2022/09/09 2:15 p.m.19 views

CVE-2022-38282

JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/videoalbum/list...

7.2CVSS0.00874EPSS
Exploits1References1
NVD
NVD
added 2022/09/09 2:15 p.m.18 views

CVE-2022-38285

JFinal CMS 5.1.0 is vulnerable to SQL Injection via /system/menu/list...

7.2CVSS0.00874EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/09/09 2:15 p.m.5 views

CVE-2022-38279

JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/imagealbum/list...

7.2CVSS5.9AI score0.00874EPSS
Exploits1References2
NVD
NVD
added 2022/09/09 2:15 p.m.11 views

CVE-2022-38283

JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/video/list...

7.2CVSS0.00874EPSS
Exploits1References1
NVD
NVD
added 2022/09/09 2:15 p.m.16 views

CVE-2022-38275

JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/contact/list...

7.2CVSS0.00874EPSS
Exploits1References1
Rows per page
Query Builder