Show filters
3 Total Results
Displaying 1-3 of 3
Sort by:
Attacker Value
Unknown

CVE-2023-40989

Disclosure Date: September 22, 2023 (last updated February 25, 2025)
SQL injection vulnerbility in jeecgboot jeecg-boot v 3.0, 3.5.3 that allows a remote attacker to execute arbitrary code via a crafted request to the report/jeecgboot/jmreport/queryFieldBySql component.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0
Attacker Value
Unknown

CVE-2021-44585

Disclosure Date: March 10, 2022 (last updated February 23, 2025)
A Cross Site Scripting (XSS) vulnerabilitiy exits in jeecg-boot 3.0 in /jeecg-boot/jmreport/view with a mouseover event.
Attack Vector: NetworkPrivileges: NoneUser Interaction: Required
0
0
Attacker Value
Unknown

CVE-2021-46089

Disclosure Date: January 25, 2022 (last updated February 23, 2025)
In JeecgBoot 3.0, there is a SQL injection vulnerability that can operate the database with root privileges.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0