pkg:Maven/com.jfinal:jfinal

36 total CVEsCRITICAL1HIGH21MEDIUM13

✅ Check your installed version

All known vulnerabilities

  • CRITICAL9.8CVE-2021-31635jFinal Server-Side Template Injection vulnerability
    from 0, <= 4.9.08
  • HIGH8.8CVE-2023-49447Cross-Site Request Forgery in JFinalCMS via /admin/nav/update
    from 0, <= 5.0.0
  • HIGH8.8CVE-2023-49383Cross-Site Request Forgery in JFinalCMS via /admin/tag/save
    from 0, <= 5.0.0
  • HIGH8.8CVE-2023-49398Cross-Site Request Forgery in JFinalCMS via /admin/category/delete
    from 0, <= 5.0.0
  • HIGH8.8CVE-2023-49397Cross-Site Request Forgery in JFinalCMS via /admin/category/updateStatus
    from 0, <= 5.0.0
  • HIGH8.8CVE-2023-49382Cross-Site Request Forgery in JFinalCMS via /admin/div/delete
    from 0, <= 5.0.0
  • HIGH8.8CVE-2023-49396Cross-Site Request Forgery in JFinalCMS via /admin/category/save
    from 0, <= 5.0.0
  • HIGH8.8CVE-2023-49395Cross-Site Request Forgery in JFinalCMS via /admin/category/update
    from 0, <= 5.0.0
  • HIGH8.8CVE-2023-49381Cross-Site Request Forgery in JFinalCMS via /admin/div/update
    from 0, <= 5.0.0
  • HIGH8.8CVE-2023-49448Cross-Site Request Forgery in JFinalCMS via admin/nav/delete
    from 0, <= 5.0.0
  • HIGH8.8CVE-2023-49446Cross-Site Request Forgery in JFinalCMS via /admin/nav/save
    from 0, <= 5.0.0
  • HIGH8.8CVE-2023-49378Cross-Site Request Forgery in JFinalCMS via /admin/form/save
    from 0, <= 5.0.0
  • HIGH8.8CVE-2023-49379Cross-Site Request Forgery in JFinalCMS via the component /admin/friend_link/save
    from 0, <= 5.0.0
  • HIGH8.8CVE-2023-49372Cross-Site Request Forgery in JFinalCMS
    from 0, <= 5.0.0
  • HIGH8.8CVE-2023-49374Cross-Site Request Forgery in JFinalCMS via /admin/slide/update
    from 0, <= 5.0.0
  • HIGH8.8CVE-2023-49376Cross-Site Request Forgery in JFinalCMS
    from 0, <= 5.0.0
  • HIGH8.8CVE-2023-49373Cross-Site Request Forgery in JFinalCMS
    from 0, <= 5.0.0
  • HIGH8.8CVE-2023-49380Cross-Site Request Forgery in JFinalCMS via /admin/friend_link/delete
    from 0, <= 5.0.0
  • HIGH8.8CVE-2023-49375Cross-Site Request Forgery in JFinalCMS via /admin/friend_link/update
    from 0, <= 5.0.0
  • HIGH8.8CVE-2023-49377Cross-Site Request Forgery in JFinalCMS via /admin/tag/update
    from 0, <= 5.0.0
  • HIGH7.5CVE-2023-50449Directory Traversal in JFinalCMS
    from 0, <= 5.0.0
  • HIGH7.5CVE-2019-17352JFinal file validation vulnerability
    from 0, < 4.5
  • MEDIUM6.1CVE-2024-22497Cross-site Scripting in JFinal
    from 0, <= 5.0.0
  • MEDIUM6.1CVE-2024-22496Cross-site Scripting in JFinal
    from 0, <= 5.0.0
  • MEDIUM6.1CVE-2021-33348Cross-site scripting in jfinal
    from 0, < 4.9.11
  • MEDIUM5.4CVE-2024-22492Cross-site Scripting in JFinal
    from 0, <= 5.0.0
  • MEDIUM5.4CVE-2024-22493Cross-site Scripting in JFinal
    from 0, <= 5.0.0
  • MEDIUM5.4CVE-2023-50101Cross-site Scripting in JFinalcms
    from 0, <= 5.0.0
  • MEDIUM5.4CVE-2023-50102Cross-site Scripting in JFinalcms
    from 0, <= 5.0.0
  • MEDIUM5.4CVE-2023-50100Cross-site Scripting in JFinalcms
    from 0, <= 5.0.0
  • MEDIUM5.4CVE-2023-50137Cross-site Scripting in JFinalcms
    from 0, <= 5.0.0
  • MEDIUM5.4CVE-2023-49487Cross-site Scripting in JFinalCMS
    from 0, <= 5.0.0
  • MEDIUM5.4CVE-2023-49486Cross-site Scripting in JFinalCMS
    from 0, <= 5.0.0
  • MEDIUM5.4CVE-2023-49485Cross-site Scripting in JFinalCMS
    from 0, <= 5.0.0
  • MEDIUM5.4CVE-2022-33113Cross-site Scripting in Jfinal CMS
    from 0, <= 5.1.0
  • CVE-2021-31649JFinal Java Deserialization Vulnerability
    from 0, <= 4.9.08