Description
A Cross Site Scripting (XSS) vulnerabilitiy exits in jeecg-boot 3.0 in /jeecg-boot/jmreport/view with a mouseover event.
Remediation
References
https://github.com/jeecgboot/jeecg-boot/issues/3223
Related Vulnerabilities
CVE-2019-10744 Vulnerability in npm package lodash
CVE-2019-17495 Vulnerability in maven package org.webjars.npm:swagger-ui
CVE-2023-41046 Vulnerability in maven package org.xwiki.platform:xwiki-platform-oldcore
CVE-2019-19466 Vulnerability in npm package sceditor
CVE-2022-41710 Vulnerability in npm package electron-markdownify