Description
Jeecg P3 Biz Chat 1.0.5 allows remote attackers to read arbitrary files through specific parameters.
Remediation
References
https://carl1l.github.io/2023/05/08/jeecg-p3-biz-chat-1-0-5-jar-has-arbitrary-file-read-vulnerability/
Related Vulnerabilities
CVE-2022-24999 Vulnerability in maven package org.webjars.npm:qs
CVE-2021-45851 Vulnerability in npm package @frangoteam/fuxa
CVE-2014-125087 Vulnerability in maven package com.jamesmurty.utils:java-xmlbuilder
CVE-2022-25647 Vulnerability in maven package com.google.code.gson:gson
CVE-2017-18353 Vulnerability in npm package rendertron-middleware