Description
Jeecg-boot v3.0 was discovered to contain a SQL injection vulnerability via the code parameter in /sys/user/queryUserComponentData.
Remediation
References
https://github.com/jeecgboot/jeecg-boot/issues/3348
Related Vulnerabilities
CVE-2020-9497 Vulnerability in maven package org.apache.guacamole:guacamole
CVE-2022-31190 Vulnerability in maven package org.dspace:dspace-xmlui
CVE-2023-26480 Vulnerability in maven package org.xwiki.platform:xwiki-platform-livedata-webjar
CVE-2023-24057 Vulnerability in maven package ca.uhn.hapi.fhir:org.hl7.fhir.r4b
CVE-2019-20444 Vulnerability in maven package io.netty:netty-codec-http