All 2 CVE vulnerabilities found in jfinal_cms, with AI-generated Chinese analysis, references, and POCs.
Vendor: jflyfox
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-11473 | jflyfox jfinal_cms AdvicefeedbackController.java list sql injection CWE-89 | 6.3 | Medium | 2026-06-08 |
| CVE-2025-6105 | jflyfox jfinal_cms HOME.java cross-site request forgery CWE-352 | 4.3 | Medium | 2025-06-16 |
All 2 known CVE vulnerabilities affecting jfinal_cms with full Chinese analysis, references, and POCs where available.