Description
Jeecg-boot v3.4.4 was discovered to contain a SQL injection vulnerability via the component /sys/dict/queryTableData.
Remediation
References
https://github.com/jeecgboot/jeecg-boot/issues/4393
Related Vulnerabilities
CVE-2021-21295 Vulnerability in maven package io.netty:netty-codec-http2
CVE-2020-28268 Vulnerability in npm package controlled-merge
CVE-2020-36188 Vulnerability in maven package com.fasterxml.jackson.core:jackson-databind
CVE-2020-28496 Vulnerability in maven package org.webjars.npm:three
CVE-2021-43980 Vulnerability in maven package org.apache.tomcat:tomcat