Description
jeecg-boot v3.4.4 was discovered to contain an authenticated SQL injection vulnerability via the building block report component.
Remediation
References
https://github.com/jeecgboot/jeecg-boot/issues/4511
Related Vulnerabilities
CVE-2021-42392 Vulnerability in maven package com.h2database:h2
CVE-2020-26302 Vulnerability in maven package org.webjars.bower:is_js
CVE-2021-21349 Vulnerability in maven package com.thoughtworks.xstream:xstream
CVE-2022-23646 Vulnerability in npm package next
CVE-2016-7103 Vulnerability in maven package org.webjars:jquery-ui