Description
A Cross Site Scripting (XSS) vulnerabilitiy exits in jeecg-boot 3.0 in /jeecg-boot/jmreport/view with a mouseover event.
Remediation
References
https://github.com/jeecgboot/jeecg-boot/issues/3223
Related Vulnerabilities
CVE-2022-30500 Vulnerability in maven package com.jflyfox:jflyfox_jfinal
CVE-2012-0394 Vulnerability in maven package org.apache.struts:struts2-core
CVE-2020-28500 Vulnerability in maven package org.webjars.bowergithub.lodash:lodash
CVE-2017-16113 Vulnerability in npm package parsejson
CVE-2018-16491 Vulnerability in maven package org.webjars.npm:node.extend