Description
Jeecg boot up to v3.5.3 was discovered to contain an arbitrary file read vulnerability via the interface /testConnection.
Remediation
References
https://github.com/Snakinya/Bugs/issues/1
Related Vulnerabilities
CVE-2022-0748 Vulnerability in npm package post-loader
CVE-2021-43090 Vulnerability in maven package com.predic8:soa-model-core
CVE-2019-12041 Vulnerability in maven package org.webjars.bowergithub.jonschlinkert:remarkable
CVE-2023-29566 Vulnerability in npm package dawnsparks-node-tesseract
CVE-2018-17960 Vulnerability in maven package org.webjars:ckeditor