Description
A Cross Site Scripting (XSS) vulnerabilitiy exits in jeecg-boot 3.0 in /jeecg-boot/jmreport/view with a mouseover event.
Remediation
References
https://github.com/jeecgboot/jeecg-boot/issues/3223
Related Vulnerabilities
CVE-2023-37964 Vulnerability in maven package org.jenkins-ci.plugins:elasticbox
CVE-2021-25949 Vulnerability in npm package set-getter
CVE-2023-48967 Vulnerability in maven package org.noear:solon.serialization.fury
CVE-2018-9207 Vulnerability in npm package jquery-file-upload
CVE-2022-45390 Vulnerability in maven package io.loader:loaderio-jenkins-plugin