jfinal CMS 5.1.0 has an arbitrary file read vulnerability.Referenceshttps://github.com/jflyfox/jfinal_cms/issues/57
