Lucene search
+L

6 matches found

GithubExploit
GithubExploit
added 2023/06/20 8:12 a.m.536 views

Exploit for SQL Injection in Jeecg Jeecg-Boot

CVE-2023-1454 Jeecg-Boot-qurestSql-SQLvuln jmreport/qurestSq...

9.8CVSS6.8AI score0.35825EPSS
Exploits3
GithubExploit
GithubExploit
added 2023/04/21 9:27 a.m.864 views

Exploit for SQL Injection in Jeecg Jeecg-Boot

CVE-2023-1454 jmreport/qurestSql – Unauthorized SQL inject...

9.8CVSS6.9AI score0.35825EPSS
Exploits3
Circl
Circl
added 2023/03/17 11:36 a.m.223 views

CVE-2023-1454

creationtimestamp| type| source ---|---|--- 2023-03-17 11:36:42+00:00| seen| https://t.me/cibsecurity/60236 2023-03-24 03:10:54+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/4024 2023-04-13 07:21:20+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/4168 2023-04-13...

9.8CVSS6.7AI score0.35825EPSS
In wildExploits3References15
vulnersOsv
vulnersOsv
added 2023/03/17 9:30 a.m.5 views

org.jeecgframework.boot:jeecg-boot-starter-cloud (>=3.4.0 <=3.5.0), org.jeecgframework.boot:jeecg-boot-starter-lock (>=3.4.0 <=3.5.0) +1 more potentially affected by CVE-2023-1454 via org.jeecgframework.boot:jeecg-boot-common (>=3.4.0 <=3.5.0)

org.jeecgframework.boot:jeecg-boot-common MAVEN version =3.4.0, =3.4.0, =3.4.0, =3.4.0, =3.5.0 Source cves: CVE-2023-1454 Source advisory: OSV:GHSA-J72F-4HGP-3MWC...

9.8CVSS6.7AI score0.35825EPSS
Exploits3
OSV
OSV
added 2023/03/17 6:56 a.m.20 views

CVE-2023-1454 jeecg-boot qurestSql sql injection

A vulnerability classified as critical has been found in jeecg-boot 3.5.0. This affects an unknown part of the file jmreport/qurestSql. The manipulation of the argument apiSelectId leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public...

6.3CVSS6.4AI score0.35825EPSS
Exploits3References5
CVE
CVE
added 2023/03/17 6:56 a.m.100 views

CVE-2023-1454

Jeecg-boot 3.5.0 is affected by CVE-2023-1454 due to an SQL injection in jmreport/qurestSql via the apiSelectId parameter. Exploitation is possible remotely and public exploits exist (e.g., via PoCs in the provided repositories). Remediation in the connected documents urges upgrading Jeecg-boot t...

9.8CVSS8.1AI score0.35825EPSS
In wildExploits3References3Affected Software1
Rows per page
Query Builder