Description
Jeecg boot up to v3.5.3 was discovered to contain an arbitrary file read vulnerability via the interface /testConnection.
Remediation
References
https://github.com/Snakinya/Bugs/issues/1
Related Vulnerabilities
CVE-2021-43306 Vulnerability in maven package org.webjars:jquery-validation
CVE-2022-25900 Vulnerability in npm package git-clone
CVE-2022-23812 Vulnerability in npm package node-ipc
CVE-2022-31197 Vulnerability in maven package org.postgresql:postgresql
CVE-2019-9153 Vulnerability in maven package org.webjars.npm:openpgp