Description
Jeecg boot up to v3.5.3 was discovered to contain an arbitrary file read vulnerability via the interface /testConnection.
Remediation
References
https://github.com/Snakinya/Bugs/issues/1
Related Vulnerabilities
CVE-2020-26301 Vulnerability in npm package ssh2
CVE-2020-13942 Vulnerability in maven package org.apache.unomi:unomi-kar
CVE-2023-37466 Vulnerability in maven package org.webjars.npm:vm2
CVE-2020-7782 Vulnerability in npm package spritesheet-js
CVE-2018-9206 Vulnerability in maven package org.webjars.bower:blueimp-file-upload