Vulnerabilities > Jfinaloa Project

DATE	CVE	VULNERABILITY TITLE	RISK
2025-01-16	CVE-2024-57769	SQL Injection vulnerability in Jfinaloa Project Jfinaloa JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component borrowmoney/listData?applyUser. network low complexity jfinaloa-project CWE-89	8.8
2025-01-16	CVE-2024-57770	SQL Injection vulnerability in Jfinaloa Project Jfinaloa JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component apply/save#oaContractApply.id. network low complexity jfinaloa-project CWE-89	8.8
2025-01-16	CVE-2024-57775	SQL Injection vulnerability in Jfinaloa Project Jfinaloa JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component getWorkFlowHis?insid. network low complexity jfinaloa-project CWE-89	8.8
2023-02-09	CVE-2023-0758	Unspecified vulnerability in Jfinaloa Project Jfinaloa 1.0.2 A vulnerability was found in glorylion JFinalOA 1.0.2 and classified as critical. network low complexity jfinaloa-project critical	9.8
2022-03-30	CVE-2021-40645	SQL Injection vulnerability in Jfinaloa Project Jfinaloa 20210907 An SQL Injection vulnerability exists in glorylion JFinalOA as of 9/7/2021 in the defkey parameter getHaveDoneTaskDataList method of the FlowTaskController. network low complexity jfinaloa-project CWE-89	6.5

Vulnerabilities > Jfinaloa Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Jfinaloa Project"}]}