Description
A Cross Site Scripting (XSS) vulnerabilitiy exits in jeecg-boot 3.0 in /jeecg-boot/jmreport/view with a mouseover event.
Remediation
References
https://github.com/jeecgboot/jeecg-boot/issues/3223
Related Vulnerabilities
CVE-2021-25945 Vulnerability in npm package js-extend
CVE-2021-21344 Vulnerability in maven package com.thoughtworks.xstream:xstream
CVE-2017-16150 Vulnerability in npm package wangguojing123
CVE-2020-7687 Vulnerability in npm package fast-http
CVE-2015-8858 Vulnerability in maven package org.webjars.npm:uglify-js