Description
jeecg-boot 3.5.0 and 3.5.1 have a SQL injection vulnerability the id parameter of the /jeecg-boot/jmreport/show interface.
Remediation
References
https://github.com/jeecgboot/jeecg-boot/issues/4976
Related Vulnerabilities
CVE-2016-10540 Vulnerability in maven package org.webjars:minimatch
CVE-2022-23458 Vulnerability in npm package tui-grid
CVE-2020-36381 Vulnerability in npm package aaptjs
CVE-2013-7285 Vulnerability in maven package org.jbehave:jbehave-core
CVE-2021-32730 Vulnerability in maven package org.xwiki.platform:xwiki-platform-administration-ui