JFinal_cms 5.1.0 is vulnerable to regex injection that may lead to Denial of Service.
jflyfox jfinal cms 5.1.0