Description
jeecg-boot v3.4.4 was discovered to contain an authenticated SQL injection vulnerability via the building block report component.
Remediation
References
https://github.com/jeecgboot/jeecg-boot/issues/4511
Related Vulnerabilities
CVE-2017-17837 Vulnerability in maven package org.apache.deltaspike.modules:jsf-module-project
CVE-2022-0198 Vulnerability in maven package edu.stanford.nlp:stanford-corenlp
CVE-2020-13943 Vulnerability in maven package org.apache.tomcat:tomcat-coyote
CVE-2017-18640 Vulnerability in maven package org.yaml:snakeyaml
CVE-2023-1370 Vulnerability in maven package net.minidev:json-smart