High severity7.2OSV Advisory· Published Sep 9, 2022· Updated Jun 17, 2026
CVE-2022-38284
CVE-2022-38284
Description
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /system/department/list.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: 4.7.1, v1.1, v1.2, …
Patches
Vulnerability mechanics
References
1- github.com/jflyfox/jfinal_cms/issues/52nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.