Description
Jeecg-boot v3.4.3 was discovered to contain a SQL injection vulnerability via the component updateNullByEmptyString.
Remediation
References
http://jeecg-boot.com
https://github.com/jeecgboot/jeecg-boot/issues/4127
Related Vulnerabilities
CVE-2018-11696 Vulnerability in npm package node-sass
CVE-2023-2138 Vulnerability in npm package @nuxtlabs/github-module
CVE-2022-45392 Vulnerability in maven package io.jenkins.plugins:cavisson-ns-nd-integration
CVE-2018-3745 Vulnerability in maven package org.webjars.npm:atob
CVE-2022-36098 Vulnerability in maven package org.xwiki.platform:xwiki-platform-mentions-ui