AgainstTheLight

8 exploits Active since Sep 2022
CVE-2022-37209 NOMISEC HIGH WRITEUP
JFinal CMS 5.1.0 - SQL Injection
JFinal CMS 5.1.0 is affected by: SQL Injection. These interfaces do not use the same component, nor do they have filters, but each uses its own SQL concatenation method, resulting in SQL injection.
1 stars
CVSS 8.8
CVE-2022-37202 NOMISEC HIGH WRITEUP
jfinal_cms 5.1.0 - SQL Injection via /admin/advicefeedback/list
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/advicefeedback/list
CVSS 8.8
CVE-2022-37203 NOMISEC CRITICAL WRITEUP
JFinal CMS 5.1.0 - SQL Injection
JFinal CMS 5.1.0 is vulnerable to SQL Injection. These interfaces do not use the same component, nor do they have filters, but each uses its own SQL concatenation method, resulting in SQL injection.
CVSS 9.8
CVE-2022-37204 NOMISEC CRITICAL WRITEUP
jfinal_cms 5.1.0 - SQL Injection
Final CMS 5.1.0 is vulnerable to SQL Injection.
CVSS 9.8
CVE-2022-37201 NOMISEC HIGH WORKING POC
JFinal CMS 5.1.0 - SQL Injection
JFinal CMS 5.1.0 is vulnerable to SQL Injection.
CVSS 8.8
CVE-2022-37207 NOMISEC HIGH WRITEUP
JFinal CMS 5.1.0 - SQL Injection
JFinal CMS 5.1.0 is affected by: SQL Injection. These interfaces do not use the same component, nor do they have filters, but each uses its own SQL concatenation method, resulting in SQL injection
CVSS 8.8
CVE-2022-37208 NOMISEC HIGH WRITEUP
JFinal CMS 5.1.0 - SQL Injection
JFinal CMS 5.1.0 is vulnerable to SQL Injection. These interfaces do not use the same component, nor do they have filters, but each uses its own SQL concatenation method, resulting in SQL injection.
CVSS 8.8
CVE-2022-37205 NOMISEC HIGH SUSPICIOUS
JFinal CMS 5.1.0 - SQL Injection
JFinal CMS 5.1.0 is affected by: SQL Injection. These interfaces do not use the same component, nor do they have filters, but each uses its own SQL concatenation method, resulting in SQL injection.
CVSS 8.8