6 matches found
CVE-2023-49442
Deserialization of Untrusted Data in jeecgFormDemoController in JEECG 4.0 and earlier allows attackers to run arbitrary code via crafted POST request...
EUVD-2020-13727
Malware in sbrugna...
CVE-2023-41578
Jeecg boot up to v3.5.3 was discovered to contain an arbitrary file read vulnerability via the interface /testConnection...
jeecg security breach
jeecg is a software application. An intelligent development platform based on a code generator. A security vulnerability exists in JEECG version 4.0 and earlier versions. An attacker exploited the vulnerability to execute arbitrary code via a specially crafted POST request...
CVE-2023-49442
CVE-2023-49442 concerns JEECG versions 4.0 and earlier where deserialization of untrusted data in the jeecgFormDemoController can lead to arbitrary code execution via a crafted POST request. The available connected sources consistently identify the issue as a deserialization vulnerability affecti...
JEECG File Upload Vulnerability
jeecg is a software application. An intelligent development platform based on a code generator. A file upload vulnerability exists in JEECG v4.0 and earlier versions, which stems from an unrestricted file upload that can be exploited by an attacker to execute arbitrary code or gain privileges by...