Description
Jeecg-boot v3.0 was discovered to contain a SQL injection vulnerability via the code parameter in /jeecg-boot/sys/user/queryUserByDepId.
Remediation
References
https://github.com/jeecgboot/jeecg-boot/issues/3347
Related Vulnerabilities
CVE-2016-7103 Vulnerability in maven package org.webjars.npm:jquery-ui
CVE-2020-17519 Vulnerability in maven package org.apache.flink:flink-runtime_2.11
CVE-2023-40341 Vulnerability in maven package io.jenkins.blueocean:blueocean
CVE-2023-34212 Vulnerability in maven package org.apache.nifi:nifi-jms-processors
CVE-2021-21428 Vulnerability in maven package org.openapitools:openapi-generator-online