Jfinalcms Project Security Vulnerabilities (CVEs)
Track 14 security vulnerabilities affecting Jfinalcms Project products and software. Get instant email alerts when new CVEs are discovered, automated security monitoring, and patch guidance.
JFinalCMS v5.0.0 contains a SQL injection vulnerability in the /admin/div_data/data endpoint that allows attackers to execute arbitrary SQL commands. ...
Jul 16, 2024JFinalCMS 5.0.0 contains a SQL injection vulnerability in the /admin/content/data endpoint that allows attackers to execute arbitrary SQL commands. Th...
Feb 2, 2024JFinalCMS 5.0.0 contains a directory traversal vulnerability that allows remote attackers to read arbitrary files on the server. Attackers can exploit...
Dec 10, 2023JFinalCMS v5.0.0 contains a Cross-Site Request Forgery (CSRF) vulnerability in the /admin/form/save endpoint that allows attackers to trick authentica...
Dec 5, 2023JFinalCMS v5.0.0 contains a CSRF vulnerability in the friend link deletion endpoint (/admin/friend_link/delete) that allows attackers to trick authent...
Dec 5, 2023JFinalCMS v5.0.0 contains a CSRF vulnerability in the custom table deletion endpoint (/admin/div/delete). This allows attackers to trick authenticated...
Dec 5, 2023JFinalCMS v5.0.0 contains a Cross-Site Request Forgery (CSRF) vulnerability in the column management modification endpoint (/admin/category/update). T...
Dec 5, 2023JFinalCMS v5.0.0 contains a CSRF vulnerability in the category status update endpoint (/admin/category/updateStatus) that allows attackers to trick au...
Dec 5, 2023JFinalCMS v5.0.0 contains a CSRF vulnerability in the navigation management area that allows attackers to trick authenticated administrators into perf...
Dec 5, 2023JFinalCMS v5.0.0 contains a CSRF vulnerability in the navigation management delete endpoint. This allows attackers to trick authenticated administrato...
Dec 5, 2023JFinalCMS v5.0.0 contains a Cross-Site Request Forgery (CSRF) vulnerability in the slide management endpoint (/admin/slide/save). This allows attacker...
Dec 5, 2023JFinalCMS v5.0.0 contains a CSRF vulnerability in the rotation image editing functionality at /admin/slide/update. This allows attackers to trick auth...
Dec 5, 2023JFinalCMS v5.0.0 contains a Cross-Site Request Forgery (CSRF) vulnerability in the tag deletion endpoint (/admin/tag/delete). This allows attackers to...
Dec 5, 2023JFinalCMS v2.0 contains a SQL injection vulnerability in the Article Management function that allows attackers to execute arbitrary SQL commands. This...
Apr 22, 2022Why Monitor Jfinalcms Project Security Vulnerabilities?
Real-time CVE tracking: Our automated system monitors 14+ known vulnerabilities affecting Jfinalcms Project products and software packages. Stay ahead of emerging threats with instant email notifications when new security issues are discovered.
Automated security monitoring: Unlike manual CVE checking, FixTheCVE automatically scans your servers and detects vulnerable Jfinalcms Project packages in under 60 seconds. No agents required - completely agentless scanning that works across Jfinalcms Project deployments.
Free vulnerability database: Access detailed information about every Jfinalcms Project CVE including CVSS scores, severity ratings, affected versions, and actionable patch guidance. Filter by critical, high, medium, or low severity to prioritize your security remediation efforts.
🚀 Get Started in 60 Seconds
- Register free account & add your servers
- Run one-time scan or schedule automatic monitoring (every 1-24 hours)
- Receive instant alerts when new Jfinalcms Project CVEs affect your systems
- Access dashboard with severity breakdown & fix instructions
