Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jeecg jeecg boot - vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2020-28087
A SQL injection vulnerability in /jeecg boot/sys/dict/loadtreedata of jeecg-boot CMS 2.3 allows malicious users to access sensitive database information.
Jeecg Jeecg Boot 2.3
7.5
CVSSv2
CVE-2020-28088
An arbitrary file upload vulnerability in /jeecg-boot/sys/common/upload of jeecg-boot CMS 2.3 allows malicious users to execute arbitrary code.
Jeecg Jeecg Boot 2.3
NA
CVE-2022-47105
Jeecg-boot v3.4.4 exists to contain a SQL injection vulnerability via the component /sys/dict/queryTableData.
Jeecg Jeecg Boot 3.4.4
NA
CVE-2023-38992
jeecg-boot v3.5.1 exists to contain a SQL injection vulnerability via the title parameter at /sys/dict/loadTreeData.
Jeecg Jeecg Boot 3.5.1
10
CVSSv2
CVE-2021-46089
In JeecgBoot 3.0, there is a SQL injection vulnerability that can operate the database with root privileges.
Jeecg Jeecg Boot 3.0
NA
CVE-2023-47467
Directory Traversal vulnerability in jeecg-boot v.3.6.0 allows a remote privileged malicious user to obtain sensitive information via the file directory structure.
Jeecg Jeecg-boot 3.6.0
NA
CVE-2023-1454
A vulnerability classified as critical has been found in jeecg-boot 3.5.0. This affects an unknown part of the file jmreport/qurestSql. The manipulation of the argument apiSelectId leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclo...
Jeecg Jeecg-boot 3.5.0
7 Github repositories
NA
CVE-2021-37304
An Insecure Permissions issue in jeecg-boot 2.4.5 allows unauthenticated remote malicious users to gain escalated privilege and view sensitive information via the httptrace interface.
Jeecg Jeecg
NA
CVE-2021-37305
An Insecure Permissions issue in jeecg-boot 2.4.5 and previous versions allows remote malicious users to gain escalated privilege and view sensitive information via api uri: /sys/user/querySysUser?username=admin.
Jeecg Jeecg
NA
CVE-2021-37306
An Insecure Permissions issue in jeecg-boot 2.4.5 and previous versions allows remote malicious users to gain escalated privilege and view sensitive information via api uri: api uri:/sys/user/checkOnlyUser?username=admin.
Jeecg Jeecg
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »