Lucene search
K

594 matches found

OSV
OSV
added 2023/06/19 6:30 a.m.30 views

GHSA-CVGC-465M-CW9G JeecgBoot vulnerable to SQL injection in queryFilterTableDictInfo

JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryFilterTableDictInfo in method org.jeecg.modules.api.controller.SystemApiController...

6.5CVSS7.7AI score0.00692EPSS
Exploits1References3
OSV
OSV
added 2023/06/19 6:30 a.m.51 views

GHSA-784X-7W88-W564 JeecgBoot vulnerable to SQL injection in queryTableDictItemsByCode

JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryTableDictItemsByCode in method org.jeecg.modules.api.controller.SystemApiController...

6.5CVSS7.7AI score0.00699EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2023/06/19 6:30 a.m.30 views

JeecgBoot vulnerable to SQL injection in queryFilterTableDictInfo

JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryFilterTableDictInfo in method org.jeecg.modules.api.controller.SystemApiController...

7.5CVSS8.3AI score0.00692EPSS
Exploits1References3Affected Software1
Github Security Blog
Github Security Blog
added 2023/06/19 6:30 a.m.18 views

JeecgBoot vulnerable to SQL injection in queryTableDictItemsByCode

JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryTableDictItemsByCode in method org.jeecg.modules.api.controller.SystemApiController...

7.5CVSS8.3AI score0.00699EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2023/06/19 6:15 a.m.26 views

CVE-2023-34602

JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryTableDictItemsByCode at org.jeecg.modules.api.controller.SystemApiController...

7.5CVSS7.8AI score0.00699EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/06/19 6:15 a.m.6 views

CVE-2023-34602

JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryTableDictItemsByCode at org.jeecg.modules.api.controller.SystemApiController...

7.5CVSS7.1AI score0.00699EPSS
Exploits1References2
NVD
NVD
added 2023/06/19 6:15 a.m.17 views

CVE-2023-34603

JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryFilterTableDictInfo at org.jeecg.modules.api.controller.SystemApiController...

7.5CVSS7.8AI score0.00692EPSS
Exploits1References1
Prion
Prion
added 2023/06/19 6:15 a.m.24 views

Sql injection

JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryTableDictItemsByCode at org.jeecg.modules.api.controller.SystemApiController...

5CVSS7.7AI score0.00699EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2023/06/19 6:15 a.m.15 views

Sql injection

JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryFilterTableDictInfo at org.jeecg.modules.api.controller.SystemApiController...

5CVSS7.7AI score0.00692EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2023/06/19 12:0 a.m.6 views

JeecgBoot SQL注入漏洞

JeecgBoot is a Chinese Java low-code platform for enterprise web applications. A security vulnerability exists in JeecgBoot 3.5.1 and earlier versions, which stems from a SQL injection vulnerability in the component queryFilterTableDictInfo...

7.5CVSS7.5AI score0.00692EPSS
Exploits1References2
OSV
OSV
added 2023/06/19 12:0 a.m.11 views

CVE-2023-34603

JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryFilterTableDictInfo at org.jeecg.modules.api.controller.SystemApiController...

7.5CVSS8.5AI score0.00692EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2023/06/19 12:0 a.m.7 views

CVE-2023-34602

JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryTableDictItemsByCode at org.jeecg.modules.api.controller.SystemApiController...

8.2AI score0.00699EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/06/19 12:0 a.m.4 views

PT-2023-24944 · Unknown · Jeecg-Boot

Name of the Vulnerable Software and Affected Versions: JeecgBoot versions up to 3.5.1 Description: The issue is a SQL injection vulnerability. It occurs via the component queryTableDictItemsByCode at org.jeecg.modules.api.controller.SystemApiController. Recommendations: For JeecgBoot versions up ...

7.5CVSS7.8AI score0.00699EPSS
Exploits1References7
CNNVD
CNNVD
added 2023/06/19 12:0 a.m.4 views

JeecgBoot SQL注入漏洞

JeecgBoot is a Chinese Java low-code platform for enterprise web applications. A security vulnerability exists in JeecgBoot 3.5.1 and earlier versions, which stems from a SQL injection vulnerability in the component queryTableDictItemsByCode...

7.5CVSS7.5AI score0.00699EPSS
Exploits1References2
CVE
CVE
added 2023/06/19 12:0 a.m.57 views

CVE-2023-34603

CVE-2023-34603 affects JeecgBoot up to v3.5.1, due to a SQL injection in the component queryFilterTableDictInfo within SystemApiController. The vulnerability is classified with high impact (CVSS v3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N; base score 7.5). Connected advisories corroborate the issue...

7.5CVSS7.7AI score0.00692EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/06/19 12:0 a.m.9 views

PT-2023-24945 · Unknown · Jeecg-Boot

Name of the Vulnerable Software and Affected Versions: JeecgBoot versions up to 3.5.1 Description: A SQL injection issue was discovered in JeecgBoot via the queryFilterTableDictInfo component at org.jeecg.modules.api.controller.SystemApiController. This allows for potential SQL injection attacks...

7.5CVSS7.9AI score0.00692EPSS
Exploits1References7
Cvelist
Cvelist
added 2023/06/19 12:0 a.m.23 views

CVE-2023-34603

JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryFilterTableDictInfo at org.jeecg.modules.api.controller.SystemApiController...

8AI score0.00692EPSS
Exploits1References1
CVE
CVE
added 2023/06/19 12:0 a.m.49 views

CVE-2023-34602

JeecgBoot (up to 3.5.1) contains a SQL injection in the component queryTableDictItemsByCode within SystemApiController. Impact is high (CVE-2023-34602) with potential confidentiality impact. The issue is evidenced across multiple feeds (NVD, Red Hat, GHSA, osv, etc.). No patch version is specifie...

7.5CVSS7.7AI score0.00699EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/06/19 12:0 a.m.11 views

CVE-2023-34603

JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryFilterTableDictInfo at org.jeecg.modules.api.controller.SystemApiController...

8.2AI score0.00692EPSS
Exploits1References1
OSV
OSV
added 2023/06/19 12:0 a.m.13 views

CVE-2023-34602

JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryTableDictItemsByCode at org.jeecg.modules.api.controller.SystemApiController...

7.5CVSS8.5AI score0.00699EPSS
Exploits1References3
Rows per page
Query Builder