17Mar
CVE-2024-2568 | heyewei JFinalCMS 5.0.0 Custom Data Page delete sql injection
A vulnerability has been found in heyewei JFinalCMS 5.0.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/div_data/delete?divId=9 of the component Custom Data Page. The manipulation leads to sql injection. This vulnerability is known as CVE-2024-2568. The attack can be launched remotely. Furthermore, there is an exploit available.