Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

RedhatCVE
RedhatCVEadded yesterday3 views

CVE-2026-8114

A vulnerability was identified in JeecgBoot up to 3.9.1. Affected by this issue is some unknown functionality of the file /sys/dict/loadTreeData of the component JSON Object Handler. The manipulation of the argument condition leads to sql injection. The attack can be initiated remotely. The explo...

6.5CVSS6.4AI score0.00031EPSS
Exploits0References1
EUVD
EUVDadded 2026/05/08 12:31 a.m.8 views

EUVD-2026-28468

A vulnerability was identified in JeecgBoot up to 3.9.1. Affected by this issue is some unknown functionality of the file /sys/dict/loadTreeData of the component JSON Object Handler. The manipulation of the argument condition leads to sql injection. The attack can be initiated remotely. The explo...

6.5CVSS6.4AI score0.00031EPSS
Exploits0References6
ATTACKERKB
ATTACKERKBadded 2026/05/07 10:0 p.m.4 views

CVE-2026-8114

A vulnerability was identified in JeecgBoot up to 3.9.1. Affected by this issue is some unknown functionality of the file /sys/dict/loadTreeData of the component JSON Object Handler. The manipulation of the argument condition leads to sql injection. The attack can be initiated remotely. The explo...

6.5CVSS6.4AI score0.00031EPSS
Exploits0References5
CVE
CVEadded 2026/05/07 10:0 p.m.8 views

CVE-2026-8114

CVE-2026-8114 affects JeecgBoot up to 3.9.1, targeting the file path /sys/dict/loadTreeData in the JSON Object Handler. The vulnerability stems from manipulation of an input argument in that function, enabling SQL injection. The issue is remote in nature, with a publicly available exploit noted i...

6.5CVSS6.4AI score0.00031EPSS
Exploits0References5
Positive Technologies
Positive Technologiesadded 2026/05/07 12:0 a.m.6 views

PT-2026-38598

Name of the Vulnerable Software and Affected Versions JeecgBoot versions prior to 3.9.2 Description An issue exists in the JSON Object Handler component where the manipulation of the condition argument in the '/sys/dict/loadTreeData' endpoint allows for remote SQL injection. SQL injection is a...

6.5CVSS6.6AI score0.00031EPSS
Exploits0References9
OSV
OSVadded 2023/07/28 3:15 p.m.23 views

CVE-2023-38992

jeecg-boot v3.5.1 was discovered to contain a SQL injection vulnerability via the title parameter at /sys/dict/loadTreeData...

9.8CVSS8.5AI score
Exploits0References1
Vulnrichment
Vulnrichmentadded 2023/07/28 12:0 a.m.18 views

CVE-2023-38992

jeecg-boot v3.5.1 was discovered to contain a SQL injection vulnerability via the title parameter at /sys/dict/loadTreeData...

8.2AI score0.64105EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2023/07/28 12:0 a.m.3 views

PT-2023-26721 · Unknown · Jeecg-Boot

Name of the Vulnerable Software and Affected Versions: jeecg-boot version 3.5.1 Description: The issue is a SQL injection vulnerability. It occurs via the title parameter at the "/sys/dict/loadTreeData" API endpoint. Recommendations: For jeecg-boot version 3.5.1, consider restricting access to th...

9.8CVSS9.5AI score0.64105EPSS
Exploits1References8
CNNVD
CNNVDadded 2021/08/06 12:0 a.m.3 views

jeecg SQL注入漏洞

Jeecg-Boot is a code generator-based intelligent development platform. jeecg-boot CMS version 2.3 of /jeecg boot/sys/dict/loadtreedata is vulnerable to SQL injection, which can be exploited by attackers to access sensitive database information...

7.5CVSS5.8AI score0.00707EPSS
Exploits1References1
Rows per page
Query Builder