Description
Jeecg-boot v3.4.3 was discovered to contain a SQL injection vulnerability via the component updateNullByEmptyString.
Remediation
References
http://jeecg-boot.com
https://github.com/jeecgboot/jeecg-boot/issues/4127
Related Vulnerabilities
CVE-2023-33779 Vulnerability in maven package com.xuxueli:xxl-job
CVE-2022-23496 Vulnerability in maven package nl.basjes.parse.useragent:yauaa-logparser
CVE-2022-0853 Vulnerability in maven package jboss:jboss-client
CVE-2021-31404 Vulnerability in maven package com.vaadin:flow-server
CVE-2023-34840 Vulnerability in npm package angular-ui-notification