Lucene search
GoogleOSV:GHSA-784X-7W88-W564HistoryJun 19, 2023 - 6:30 a.m.
JeecgBoot vulnerable to SQL injection in queryTableDictItemsByCode
2023-06-1906:30:42
Google
osv.dev
4
jeecgboot
v3.5.1
sql injection
querytabledictitemsbycode
software
systemapicontroller
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
46.7%
JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryTableDictItemsByCode in method org.jeecg.modules.api.controller.SystemApiController.
Related
prion
prion
Sql injection
2023-06-19 06:15:00
cve
cve
CVE-2023-34602
2023-06-19 06:15:09
github
github
JeecgBoot vulnerable to SQL injection in queryTableDictItemsByCode
2023-06-19 06:30:42
nvd
nvd
CVE-2023-34602
2023-06-19 06:15:09
osv
osv
CVE-2023-34602
2023-06-19 06:15:09
cvelist
cvelist
CVE-2023-34602
2023-06-19 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS
0.001
Percentile
46.7%
Related for OSV:GHSA-784X-7W88-W564