Description
jeecg-boot 3.5.0 and 3.5.1 have a SQL injection vulnerability the id parameter of the /jeecg-boot/jmreport/show interface.
Remediation
References
https://github.com/jeecgboot/jeecg-boot/issues/4976
Related Vulnerabilities
CVE-2022-31367 Vulnerability in npm package strapi
CVE-2021-21341 Vulnerability in maven package com.thoughtworks.xstream:xstream
CVE-2021-23558 Vulnerability in npm package bmoor
CVE-2022-41678 Vulnerability in maven package org.apache.activemq:apache-activemq
CVE-2019-10744 Vulnerability in maven package org.webjars.bowergithub.lodash:lodash