VYPR
Unrated severityNVD Advisory· Published Dec 9, 2024· Updated Dec 10, 2024

JFinalCMS File Content ContentModel.java findPage sql injection

CVE-2024-12351

Description

A vulnerability classified as critical has been found in JFinalCMS 1.0. This affects the function findPage of the file src\main\java\com\cms\entity\ContentModel.java of the component File Content Handler. The manipulation of the argument name leads to sql injection. It is possible to initiate the attack remotely.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.