VYPR
Unrated severityNVD Advisory· Published Oct 13, 2022· Updated May 15, 2025

CVE-2022-37208

CVE-2022-37208

Description

JFinal CMS 5.1.0 is vulnerable to SQL Injection. These interfaces do not use the same component, nor do they have filters, but each uses its own SQL concatenation method, resulting in SQL injection.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Jfinal/Jfinalcpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: = 5.1.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.