Description
jeecg-boot 3.5.0 and 3.5.1 have a SQL injection vulnerability the id parameter of the /jeecg-boot/jmreport/show interface.
Remediation
References
https://github.com/jeecgboot/jeecg-boot/issues/4976
Related Vulnerabilities
CVE-2022-35513 Vulnerability in npm package blink1control2
CVE-2023-37956 Vulnerability in maven package org.jenkins-ci.plugins:test-results-aggregator
CVE-2023-30094 Vulnerability in npm package total4
CVE-2023-50728 Vulnerability in npm package @octokit/webhooks
CVE-2018-13863 Vulnerability in maven package org.webjars.npm:bson