2023-06-26 00:00:00
mitre
PUBLISHED
Server-Side Template Injection (SSTI) vulnerability in jFinal v.4.9.08 allows a remote attacker to execute arbitrary code via the template function.