Description

Directory Traversal vulnerability in jeecg-boot v.3.6.0 allows a remote privileged attacker to obtain sensitive information via the file directory structure.

Remediation

References

https://www.yuque.com/u2479829/tegvu8/dvmfdl5fssfen05q

Related Vulnerabilities

CVE-2020-28495 Vulnerability in npm package total.js

CVE-2016-5018 Vulnerability in maven package tomcat:jasper-runtime

CVE-2016-6814 Vulnerability in maven package org.codehaus.groovy:groovy-all

CVE-2023-2196 Vulnerability in maven package org.jenkins-ci.plugins:codedx

CVE-2013-2251 Vulnerability in maven package org.apache.struts:struts2-core

Severity

High

Classification

CWE-22 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Tags

Broken Link