CVE-2021-31635: jFinal Server-Side Template Injection vulnerability

Severity: Critical

CVSS Score: 9.8

Server-Side Template Injection (SSTI) vulnerability in jFinal v.4.9.08 allows a remote attacker to execute arbitrary code via the template function.