Description
A Cross Site Scripting (XSS) vulnerabilitiy exits in jeecg-boot 3.0 in /jeecg-boot/jmreport/view with a mouseover event.
Remediation
References
https://github.com/jeecgboot/jeecg-boot/issues/3223
Related Vulnerabilities
CVE-2022-25758 Vulnerability in npm package scss-tokenizer
CVE-2023-6134 Vulnerability in maven package org.keycloak:keycloak-services
CVE-2020-35149 Vulnerability in npm package rxdb
CVE-2020-7675 Vulnerability in npm package cd-messenger
CVE-2021-35517 Vulnerability in maven package org.apache.commons:commons-compress