Jeecg-boot v3.4.3 was discovered to contain a SQL injection vulnerability via the component /sys/user/putRecycleBin.
References
Link | Resource |
---|---|
http://jeecg-boot.com | Product |
https://github.com/jeecgboot/jeecg-boot/issues/4126 | Exploit Issue Tracking Third Party Advisory |
http://jeecg-boot.com | Product |
https://github.com/jeecgboot/jeecg-boot/issues/4126 | Exploit Issue Tracking Third Party Advisory |
Configurations
History
21 Nov 2024, 07:28
Type | Values Removed | Values Added |
---|---|---|
References | () http://jeecg-boot.com - Product | |
References | () https://github.com/jeecgboot/jeecg-boot/issues/4126 - Exploit, Issue Tracking, Third Party Advisory |
Information
Published : 2022-11-25 17:15
Updated : 2024-11-21 07:28
NVD link : CVE-2022-45208
Mitre link : CVE-2022-45208
CVE.ORG link : CVE-2022-45208
JSON object : View
Products Affected
jeecg
- jeecg_boot
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')