Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jeecg jeecg boot vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-41544
SSTI injection vulnerability in jeecg-boot version 3.5.3, allows remote malicious users to execute arbitrary code via crafted HTTP request to the /jmreport/loadTableData component.
Jeecg Jeecg Boot
9.8
CVSSv3
CVE-2023-41542
SQL injection vulnerability in jeecg-boot version 3.5.3, allows remote malicious users to escalate privileges and obtain sensitive information via the jmreport/qurestSql component.
Jeecg Jeecg Boot
9.8
CVSSv3
CVE-2023-41543
SQL injection vulnerability in jeecg-boot v3.5.3, allows remote malicious users to escalate privileges and obtain sensitive information via the component /sys/replicate/check.
Jeecg Jeecg Boot
9.8
CVSSv3
CVE-2023-40989
SQL injection vulnerbility in jeecgboot jeecg-boot v 3.0, 3.5.3 that allows a remote malicious user to execute arbitrary code via a crafted request to the report/jeecgboot/jmreport/queryFieldBySql component.
Jeecg Jeecg Boot 3.0
Jeecg Jeecg Boot 3.5.3
9.8
CVSSv3
CVE-2023-42268
Jeecg boot up to v3.5.3 exists to contain a SQL injection vulnerability via the component /jeecg-boot/jmreport/show.
Jeecg Jeecg Boot
1 Github repository
9.8
CVSSv3
CVE-2023-38992
jeecg-boot v3.5.1 exists to contain a SQL injection vulnerability via the title parameter at /sys/dict/loadTreeData.
Jeecg Jeecg Boot 3.5.1
9.8
CVSSv3
CVE-2023-34659
jeecg-boot 3.5.0 and 3.5.1 have a SQL injection vulnerability the id parameter of the /jeecg-boot/jmreport/show interface.
Jeecg Jeecg Boot 3.5.0
Jeecg Jeecg Boot 3.5.1
9.8
CVSSv3
CVE-2023-1784
A vulnerability was found in jeecg-boot 3.5.0 and classified as critical. This issue affects some unknown processing of the component API Documentation. The manipulation leads to improper authentication. The attack may be initiated remotely. The exploit has been disclosed to the ...
Jeecg Jeecg Boot 3.5.0
9.8
CVSSv3
CVE-2023-1741
A vulnerability was found in jeecg-boot 3.5.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file SysDictMapper.java of the component Sleep Command Handler. The manipulation leads to sql injection. The attack can be launche...
Jeecg Jeecg Boot 3.5.0
9.8
CVSSv3
CVE-2023-1454
A vulnerability classified as critical has been found in jeecg-boot 3.5.0. This affects an unknown part of the file jmreport/qurestSql. The manipulation of the argument apiSelectId leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclo...
Jeecg Jeecg-boot 3.5.0
7 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »