Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2026/04/02 5:4 a.m.4 views

CVE-2024-43028

A command injection vulnerability in the component /jmreport/show of jeecg boot v3.0.0 to v3.5.3 allows attackers to execute arbitrary code via a crafted HTTP request...

9.8CVSS6.2AI score0.01531EPSS
Exploits0References1
EUVD
EUVD
added 2026/04/01 6:36 p.m.16 views

EUVD-2024-55520

A command injection vulnerability in the component /jmreport/show of jeecg boot v3.0.0 to v3.5.3 allows attackers to execute arbitrary code via a crafted HTTP request...

9.8CVSS6.2AI score0.01531EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/01 12:0 a.m.4 views

PT-2026-29548

A command injection vulnerability in the component /jmreport/show of jeecg boot v3.0.0 to v3.5.3 allows attackers to execute arbitrary code via a crafted HTTP request...

9.8CVSS6.2AI score0.01531EPSS
Exploits0References4
CNNVD
CNNVD
added 2026/04/01 12:0 a.m.5 views

JeecgBoot 安全漏洞

JeecgBoot is a Java low-code platform developed by Jeecg Corporation, designed for enterprise web applications. Versions of JeecgBoot from v3.0.0 to v3.5.3 have security vulnerabilities. These vulnerabilities stem from command injection in the component jmreport/show, which could allow attackers ...

9.8CVSS6.2AI score0.01531EPSS
Exploits0References2
CVE
CVE
added 2026/04/01 12:0 a.m.8 views

CVE-2024-43028

CVE-2024-43028 is a reported command-injection vulnerability in the Jeecg Boot platform, affecting the /jmreport/show component from v3.0.0 to v3.5.3. The issue allows an attacker to execute arbitrary code via a crafted HTTP request, with network access (no authentication) required. The CVSS v3.1...

9.8CVSS6.2AI score0.01531EPSS
Exploits0References2Affected Software1
Vulnrichment
Vulnrichment
added 2026/04/01 12:0 a.m.8 views

CVE-2024-43028

A command injection vulnerability in the component /jmreport/show of jeecg boot v3.0.0 to v3.5.3 allows attackers to execute arbitrary code via a crafted HTTP request...

6.2AI score0.01531EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2023/11/27 12:0 a.m.4 views

VulnCheck KEV: CVE-2023-34659

jeecg-boot 3.5.0 and 3.5.1 have a SQL injection vulnerability the id parameter of the /jeecg-boot/jmreport/show interface...

9.8CVSS7.4AI score0.1248EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/09/08 7:15 p.m.4 views

CVE-2023-42268

Jeecg boot up to v3.5.3 was discovered to contain a SQL injection vulnerability via the component /jeecg-boot/jmreport/show...

9.8CVSS5.8AI score0.00745EPSS
Exploits1References2
CNNVD
CNNVD
added 2023/09/08 12:0 a.m.5 views

jeecg SQL注入漏洞

Jeecg-Boot is a low-code platform based on a code generator. A SQL injection vulnerability exists in Jeecg-Boot v3.5.3 and earlier versions, which stems from a lack of validation of externally entered SQL statements in the component /jeecg-boot/jmreport/show. An attacker can exploit this...

9.8CVSS8.3AI score0.00745EPSS
Exploits1References2
OSV
OSV
added 2023/06/16 6:30 p.m.56 views

GHSA-934G-FVCC-4833 jeecg-boot SQL injection vulnerability

jeecg-boot 3.5.0 and 3.5.1 have a SQL injection vulnerability the id parameter of the /jeecg-boot/jmreport/show interface...

9.8CVSS9.8AI score0.1248EPSS
Exploits1References3
NVD
NVD
added 2023/06/16 6:15 p.m.23 views

CVE-2023-34659

jeecg-boot 3.5.0 and 3.5.1 have a SQL injection vulnerability the id parameter of the /jeecg-boot/jmreport/show interface...

9.8CVSS9.8AI score0.1248EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/06/16 12:0 a.m.6 views

Jeecg-Boot SQL注入漏洞

Jeecg-Boot is a low-code platform based on a code generator from the JeecgBoot community. A security vulnerability exists in jeecg-boot versions 3.5.0 and 3.5.1, which stems from a SQL injection vulnerability in the id parameter of the /jeecg-boot/jmreport/show interface...

9.8CVSS8.6AI score0.1248EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/05/25 12:0 a.m.4 views

PT-2023-6685 · Unknown · Jeecg-Boot

Name of the Vulnerable Software and Affected Versions: jeecg-boot versions 3.5.0 through 3.5.1 Description: The issue is related to a SQL injection vulnerability. It is associated with the lack of protection measures for the SQL query structure when processing the id parameter. This vulnerability...

9.8CVSS9.6AI score0.1248EPSS
Exploits1References7
Rows per page
Query Builder