CVE-2024-57768
16.01.2025, 18:15
JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component validRoleKey?sysRole.key.
| Vendor | Product | Version |
|---|---|---|
| jfinaloa_project | jfinaloa | 𝑥 < 2025-01-01 |
𝑥
= Vulnerable software versions