Heyewei Jfinalcms

8 CVEs affecting Heyewei Jfinalcms. Latest disclosed: 2026-02-09. Critical: 1, High: 0.

Top CVEs affecting Heyewei Jfinalcms
CVESeverityScorePublishedSummary
CVE-2024-57665Critical9.82025-01-29JFinalCMS 1.0 is vulnerable to SQL Injection in rc/main/java/com/cms/entity/Content.java. The cause of the vulnerability is that the title parameter is control…
CVE-2024-8782Medium6.32024-09-13A vulnerability was found in JFinalCMS up to 1.0. It has been rated as critical. This issue affects the function delete of the file /admin/template/edit. The m…
CVE-2024-2568Medium4.72024-03-17A vulnerability has been found in heyewei JFinalCMS 5.0.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /a…
CVE-2024-8706Medium4.32024-09-12A vulnerability was found in JFinalCMS up to 20240903. It has been classified as problematic. This affects the function update of the file /admin/template/upda…
CVE-2024-8694Low3.82024-09-11A vulnerability, which was classified as problematic, was found in JFinalCMS up to 20240903. This affects the function update of the file /admin/template/updat…
CVE-2024-5379Low3.52024-05-26A vulnerability was found in JFinalCMS up to 20240111. It has been rated as problematic. This issue affects some unknown processing of the file /admin/template…
CVE-2026-2200Low2.42026-02-09A weakness has been identified in heyewei JFinalCMS 5.0.0. This affects an unknown function of the file /admin/admin/save of the component API Endpoint. Execut…
CVE-2024-5310Low2.42024-05-24A vulnerability classified as problematic has been found in JFinalCMS up to 20221020. This affects an unknown part of the file /admin/content. The manipulation…