Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
8.8
CVSSv3

CVE-2022-37202

Published: 26/10/2022 Updated: 28/10/2022
CVSS v3 Base Score: 8.8 | Impact Score: 5.9 | Exploitability Score: 2.8
VMScore: 0
Subscribe to Jflyfox

Vulnerability Summary

JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/advicefeedback/list

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

jflyfox jfinal cms 5.1.0

Github Repositories

https://github.com/AgainstTheLight/CVE-2022-37202

CVE-2022-37202 POC

CVE-2022-37202 CVE-2022-37202 POC [Suggested description] JFinal CMS 510 is vulnerable to SQL Injection [Vulnerability Type] SQL Injection [Vendor of Product] the development group [Affected Product Code Base] githubcom/jflyfox/jfinal_cms - JFinal CMS 510 [Affected Component] These interfaces do not use the same component, nor do they have filters, but each u

References

CWE-89https://github.com/AgainstTheLight/CVE-2022-37202/blob/main/README.mdhttps://github.com/AgainstTheLight/someEXP_of_jfinal_cms/blob/main/jfinal_cms/sql1.mdhttps://nvd.nist.govhttps://github.com/AgainstTheLight/CVE-2022-37202
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700CVE-2022-48689CVE-2024-27956CVE-2023-6363SQLNULL pointer dereferenceCVE-2023-41830CVE-2015-2051arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook