Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jeecg jeecg boot vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-28087
A SQL injection vulnerability in /jeecg boot/sys/dict/loadtreedata of jeecg-boot CMS 2.3 allows malicious users to access sensitive database information.
Jeecg Jeecg Boot 2.3
9.8
CVSSv3
CVE-2020-28088
An arbitrary file upload vulnerability in /jeecg-boot/sys/common/upload of jeecg-boot CMS 2.3 allows malicious users to execute arbitrary code.
Jeecg Jeecg Boot 2.3
9.8
CVSSv3
CVE-2022-47105
Jeecg-boot v3.4.4 exists to contain a SQL injection vulnerability via the component /sys/dict/queryTableData.
Jeecg Jeecg Boot 3.4.4
9.8
CVSSv3
CVE-2023-38992
jeecg-boot v3.5.1 exists to contain a SQL injection vulnerability via the title parameter at /sys/dict/loadTreeData.
Jeecg Jeecg Boot 3.5.1
9.8
CVSSv3
CVE-2021-46089
In JeecgBoot 3.0, there is a SQL injection vulnerability that can operate the database with root privileges.
Jeecg Jeecg Boot 3.0
6.5
CVSSv3
CVE-2023-47467
Directory Traversal vulnerability in jeecg-boot v.3.6.0 allows a remote privileged malicious user to obtain sensitive information via the file directory structure.
Jeecg Jeecg-boot 3.6.0
9.8
CVSSv3
CVE-2023-1454
A vulnerability classified as critical has been found in jeecg-boot 3.5.0. This affects an unknown part of the file jmreport/qurestSql. The manipulation of the argument apiSelectId leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclo...
Jeecg Jeecg-boot 3.5.0
7 Github repositories
7.5
CVSSv3
CVE-2021-37304
An Insecure Permissions issue in jeecg-boot 2.4.5 allows unauthenticated remote malicious users to gain escalated privilege and view sensitive information via the httptrace interface.
Jeecg Jeecg
7.5
CVSSv3
CVE-2021-37305
An Insecure Permissions issue in jeecg-boot 2.4.5 and previous versions allows remote malicious users to gain escalated privilege and view sensitive information via api uri: /sys/user/querySysUser?username=admin.
Jeecg Jeecg
7.5
CVSSv3
CVE-2021-37306
An Insecure Permissions issue in jeecg-boot 2.4.5 and previous versions allows remote malicious users to gain escalated privilege and view sensitive information via api uri: api uri:/sys/user/checkOnlyUser?username=admin.
Jeecg Jeecg
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »