Show filters
37 Total Results
Displaying 31-37 of 37
Sort by:
Attacker Value
Unknown
CVE-2022-22881
Disclosure Date: February 16, 2022 (last updated February 23, 2025)
Jeecg-boot v3.0 was discovered to contain a SQL injection vulnerability via the code parameter in /sys/user/queryUserComponentData.
0
Attacker Value
Unknown
CVE-2022-22880
Disclosure Date: February 16, 2022 (last updated February 23, 2025)
Jeecg-boot v3.0 was discovered to contain a SQL injection vulnerability via the code parameter in /jeecg-boot/sys/user/queryUserByDepId.
0
Attacker Value
Unknown
CVE-2021-46089
Disclosure Date: January 25, 2022 (last updated February 23, 2025)
In JeecgBoot 3.0, there is a SQL injection vulnerability that can operate the database with root privileges.
0
Attacker Value
Unknown
CVE-2020-20948
Disclosure Date: December 27, 2021 (last updated February 23, 2025)
An arbitrary file download vulnerability in jeecg v3.8 allows attackers to access sensitive files via modification of the "localPath" variable.
0
Attacker Value
Unknown
CVE-2020-28088
Disclosure Date: August 06, 2021 (last updated February 23, 2025)
An arbitrary file upload vulnerability in /jeecg-boot/sys/common/upload of jeecg-boot CMS 2.3 allows attackers to execute arbitrary code.
0
Attacker Value
Unknown
CVE-2020-28087
Disclosure Date: August 06, 2021 (last updated February 23, 2025)
A SQL injection vulnerability in /jeecg boot/sys/dict/loadtreedata of jeecg-boot CMS 2.3 allows attackers to access sensitive database information.
0
Attacker Value
Unknown
CVE-2020-23083
Disclosure Date: May 03, 2021 (last updated February 22, 2025)
Unrestricted File Upload in JEECG v4.0 and earlier allows remote attackers to execute arbitrary code or gain privileges by uploading a crafted file to the component "jeecgFormDemoController.do?commonUpload".
0
