Description
Jeecg boot up to v3.5.3 was discovered to contain an arbitrary file read vulnerability via the interface /testConnection.
Remediation
References
https://github.com/Snakinya/Bugs/issues/1
Related Vulnerabilities
CVE-2023-32315 Vulnerability in maven package org.igniterealtime.openfire:xmppserver
CVE-2019-10776 Vulnerability in npm package git-diff-apply
CVE-2020-7691 Vulnerability in maven package org.webjars.bower:jspdf
CVE-2019-10805 Vulnerability in npm package valib
CVE-2020-11023 Vulnerability in maven package org.webjars.npm:jquery