Description
A Cross Site Scripting (XSS) vulnerabilitiy exits in jeecg-boot 3.0 in /jeecg-boot/jmreport/view with a mouseover event.
Remediation
References
https://github.com/jeecgboot/jeecg-boot/issues/3223
Related Vulnerabilities
CVE-2017-18197 Vulnerability in maven package org.webjars.npm:mxgraph
CVE-2022-25895 Vulnerability in npm package lite-dev-server
CVE-2022-37616 Vulnerability in npm package @xmldom/xmldom
CVE-2018-3787 Vulnerability in npm package simplehttpserver
CVE-2020-2212 Vulnerability in maven package org.jenkins-ci.plugins:github-coverage-reporter