CVE-2024-57768 Information

Description

JFinalOA before v2025.01.01 was discovered to contain a SQL injection vulnerability via the component validRoleKey?sysRole.key.

Reference

https://gitee.com/r1bbit/JFinalOA/issues/IBHUMT