Description Jfinal cms 5.1.0 is vulnerable to SQL Injection. Remediation References https://github.com/jflyfox/jfinal_cms/issues/35 Related Vulnerabilities CVE-2021-30246 Vulnerability in npm package jsrsasign CVE-2022-1440 Vulnerability in npm package git-interface CVE-2023-26488 Vulnerability in npm package @openzeppelin/contracts-upgradeable CVE-2021-43570 Vulnerability in maven package com.starkbank.ellipticcurve:starkbank-ecdsa CVE-2020-24807 Vulnerability in npm package socket.io-file Severity Critical Classification CWE-89 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H Tags Exploit Issue Tracking Third Party Advisory