Headline
GHSA-cvgc-465m-cw9g: JeecgBoot vulnerable to SQL injection in queryFilterTableDictInfo
JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryFilterTableDictInfo in method org.jeecg.modules.api.controller.SystemApiController.
JeecgBoot vulnerable to SQL injection in queryFilterTableDictInfo
Moderate severity GitHub Reviewed Published Jun 19, 2023 to the GitHub Advisory Database • Updated Jun 19, 2023
Related news
CVE-2023-34603: org.jeecg.modules.api.controller.SystemApiController.queryFilterTableDictInfo方法导致SQL注入 · Issue #4984 · jeecgboot/jeecg-boot
JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryFilterTableDictInfo at org.jeecg.modules.api.controller.SystemApiController.