Zccacco

**Name of the Vulnerable Software and Affected Versions** jflyfox jfinalCMS version 5.1.0 **Description** The issue allows a remote attacker to execute arbitrary code via a crafted script to the "login.jsp" component in the template management module. **Recommendations** For jflyfox jfinalCMS version 5.1.0, consider disabling access to the login.jsp component in the template management module until a patch is available. Restrict access to the template management module to minimize the risk of exploitation.