Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jflyfox jfinal cms vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-34928
JFinal CMS v5.1.0 exists to contain a SQL injection vulnerability via /system/user.
Jflyfox Jfinal Cms 5.1.0
5.4
CVSSv3
CVE-2022-27111
Jfinal_CMS 5.1.0 allows malicious users to use the feedback function to send malicious XSS code to the administrator backend and execute it.
Jflyfox Jfinal Cms 5.1.0
9.8
CVSSv3
CVE-2023-47503
An issue in jflyfox jfinalCMS v.5.1.0 allows a remote malicious user to execute arbitrary code via a crafted script to the login.jsp component in the template management module.
Jflyfox Jfinal Cms 5.1.0
7.2
CVSSv3
CVE-2022-38277
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/folderrollpicture/list.
Jflyfox Jfinal Cms 5.1.0
9.8
CVSSv3
CVE-2022-37199
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /jfinal_cms/system/user/list.
Jflyfox Jfinal Cms 5.1.0
9.8
CVSSv3
CVE-2022-37203
JFinal CMS 5.1.0 is vulnerable to SQL Injection. These interfaces do not use the same component, nor do they have filters, but each uses its own SQL concatenation method, resulting in SQL injection.
Jflyfox Jfinal Cms 5.1.0
1 Github repository
8.8
CVSSv3
CVE-2022-37208
JFinal CMS 5.1.0 is vulnerable to SQL Injection. These interfaces do not use the same component, nor do they have filters, but each uses its own SQL concatenation method, resulting in SQL injection.
Jflyfox Jfinal Cms 5.1.0
2 Github repositories
8.8
CVSSv3
CVE-2022-37209
JFinal CMS 5.1.0 is affected by: SQL Injection. These interfaces do not use the same component, nor do they have filters, but each uses its own SQL concatenation method, resulting in SQL injection.
Jflyfox Jfinal Cms 5.1.0
2 Github repositories
5.4
CVSSv3
CVE-2022-33113
Jfinal CMS v5.1.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the keyword text field under the publish blog module.
Jflyfox Jfinal Cms 5.1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30065
CVE-2024-5843
CVE-2024-30080
code execution
CVE-2024-4577
CVE-2024-26169
wireless
remote code execution
CVE-2024-36103
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5