Lucene search
K

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 2:52 a.m.3 views

CVE-2023-24747

Jfinal CMS v5.1 was discovered to contain a cross-site scripting XSS vulnerability via the component /system/dict/list...

5.4CVSS6.2AI score0.00373EPSS
Exploits0References1
NVD
NVD
added 2023/04/05 8:15 p.m.14 views

CVE-2023-24747

Jfinal CMS v5.1 was discovered to contain a cross-site scripting XSS vulnerability via the component /system/dict/list...

5.4CVSS5.4AI score0.00373EPSS
Exploits0References1
Prion
Prion
added 2023/04/05 8:15 p.m.13 views

Cross site scripting

Jfinal CMS v5.1 was discovered to contain a cross-site scripting XSS vulnerability via the component /system/dict/list...

4.9CVSS5.4AI score0.00373EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/04/05 12:0 a.m.3 views

jfinal cms 跨站脚本漏洞

jfinal cms is a java development of powerful information consulting website , using the simple and powerful JFinal as the web framework , template engine with beetl , database with mysql , front-end bootstrap framework . A security vulnerability exists in jfinal cms version 5.1, which originates...

5.4CVSS5.3AI score0.00373EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/04/05 12:0 a.m.5 views

PT-2023-19764 · Jfinalcms · Jfinalcms

Name of the Vulnerable Software and Affected Versions: Jfinal CMS version 5.1 Description: A cross-site scripting XSS issue was found in Jfinal CMS via the component "/system/dict/list". This component is an API endpoint that is susceptible to XSS attacks. Recommendations: For Jfinal CMS version...

5.4CVSS5.4AI score0.00373EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2022/06/23 5:15 p.m.4 views

CVE-2022-33114

Jfinal CMS v5.1.0 was discovered to contain a SQL injection vulnerability via the attrVal parameter at /jfinalcms/system/dict/list...

7.2CVSS5.8AI score0.00911EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/06/23 12:0 a.m.1 views

Jfinal CMS SQL注入漏洞

Jfinal CMS is a java development of powerful information consulting website , using a simple and powerful JFinal as the web framework , template engine with beetl, database with mysql, front-end bootstrap framework. Jfinal CMS version v5.1.0 has a SQL injection vulnerability that originates from...

7.2CVSS6.1AI score0.00911EPSS
Exploits1References2
Rows per page
Query Builder