2 matches found
CVE-2021-37306
An Insecure Permissions issue in jeecg-boot 2.4.5 and earlier allows remote attackers to gain escalated privilege and view sensitive information via api uri: api uri:/sys/user/checkOnlyUser?username=admin...
CVE-2021-37306
CVE-2021-37306 affects jeecg-boot up to version 2.4.5 and earlier, where insecure permissions allow remote attackers to gain escalated privileges and view sensitive information via the API endpoint /sys/user/checkOnlyUser?username=admin. The vulnerability is documented with a HIGH impact (CVSS v3...