SQLI vul1 in jfinal_cms 5.1.0

There is a SQLI vul in background mode.The route is as following 
![3](https://user-images.githubusercontent.com/94961254/167234987-2c327374-26ec-498a-b106-02564c1b3bf3.png)
vulnerable argument passing is as following
![4](https://user-images.githubusercontent.com/94961254/167235013-0981d13e-e254-43ac-bc70-5181091d1fc4.png)
final injection result with sqlmap
![2](https://user-images.githubusercontent.com/94961254/167235035-9e4fbb1f-fa3a-462b-a4c4-38917dc7b7c7.png)



Provide feedback

Saved searches

Use saved searches to filter your results more quickly

SQLI vul1 in jfinal_cms 5.1.0 #35

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development