2 matches found
CVE-2023-34602
JeecgBoot (up to 3.5.1) contains a SQL injection in the component queryTableDictItemsByCode within SystemApiController. Impact is high (CVE-2023-34602) with potential confidentiality impact. The issue is evidenced across multiple feeds (NVD, Red Hat, GHSA, osv, etc.). No patch version is specifie...
CVE-2023-34602
JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryTableDictItemsByCode at org.jeecg.modules.api.controller.SystemApiController...