CVE-2022-37199 Information

Description

JFinal CMS 5.1.0 is vulnerable to SQL Injection via /jfinal_cms/system/user/list.

Reference

https://github.com/jflyfox/jfinal_cms/issues/48