Description
A Cross Site Scripting (XSS) vulnerabilitiy exits in jeecg-boot 3.0 in /jeecg-boot/jmreport/view with a mouseover event.
Remediation
References
https://github.com/jeecgboot/jeecg-boot/issues/3223
Related Vulnerabilities
CVE-2017-5638 Vulnerability in maven package org.apache.struts:struts2-core
CVE-2023-26486 Vulnerability in maven package org.webjars.bowergithub.vega:vega
CVE-2023-24162 Vulnerability in maven package cn.hutool:hutool-all
CVE-2020-26302 Vulnerability in npm package is_js
CVE-2021-44550 Vulnerability in maven package edu.stanford.nlp:stanford-corenlp