Description
Jeecg boot up to v3.5.3 was discovered to contain a SQL injection vulnerability via the component /jeecg-boot/jmreport/show.
Remediation
References
https://github.com/jeecgboot/jeecg-boot/issues/5311
Related Vulnerabilities
CVE-2018-3735 Vulnerability in npm package bracket-template
CVE-2023-36479 Vulnerability in maven package org.eclipse.jetty:jetty-servlets
CVE-2018-10469 Vulnerability in maven package org.b3log:symphony
CVE-2022-37724 Vulnerability in maven package wonder.utilities:utilities
CVE-2020-8203 Vulnerability in maven package org.webjars.bowergithub.lodash:lodash