Heyewei Jfinalcms
8 CVEs affecting Heyewei Jfinalcms. Latest disclosed: 2026-02-09. Critical: 1, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-57665 | Critical | 9.8 | 2025-01-29 | JFinalCMS 1.0 is vulnerable to SQL Injection in rc/main/java/com/cms/entity/Content.java. The cause of the vulnerability is that the title parameter is control… |
CVE-2024-8782 | Medium | 6.3 | 2024-09-13 | A vulnerability was found in JFinalCMS up to 1.0. It has been rated as critical. This issue affects the function delete of the file /admin/template/edit. The m… |
CVE-2024-2568 | Medium | 4.7 | 2024-03-17 | A vulnerability has been found in heyewei JFinalCMS 5.0.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /a… |
CVE-2024-8706 | Medium | 4.3 | 2024-09-12 | A vulnerability was found in JFinalCMS up to 20240903. It has been classified as problematic. This affects the function update of the file /admin/template/upda… |
CVE-2024-8694 | Low | 3.8 | 2024-09-11 | A vulnerability, which was classified as problematic, was found in JFinalCMS up to 20240903. This affects the function update of the file /admin/template/updat… |
CVE-2024-5379 | Low | 3.5 | 2024-05-26 | A vulnerability was found in JFinalCMS up to 20240111. It has been rated as problematic. This issue affects some unknown processing of the file /admin/template… |
CVE-2026-2200 | Low | 2.4 | 2026-02-09 | A weakness has been identified in heyewei JFinalCMS 5.0.0. This affects an unknown function of the file /admin/admin/save of the component API Endpoint. Execut… |
CVE-2024-5310 | Low | 2.4 | 2024-05-24 | A vulnerability classified as problematic has been found in JFinalCMS up to 20221020. This affects an unknown part of the file /admin/content. The manipulation… |