2023-12-10 00:00:00
mitre
PUBLISHED
JFinalCMS 5.0.0 could allow a remote attacker to read files via ../ Directory Traversal in the /common/down/file fileKey parameter.