Jeecg-boot v3.4.3 was discovered to contain a SQL injection vulnerability via the component /sys/user/deleteRecycleBin.
References
Link | Resource |
---|---|
http://jeecg-boot.com | Product |
https://github.com/jeecgboot/jeecg-boot/issues/4125 | Exploit Issue Tracking Third Party Advisory |
Configurations
Information
Published : 2022-11-25 09:15
Updated : 2022-11-28 11:41
NVD link : CVE-2022-45210
Mitre link : CVE-2022-45210
JSON object : View
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Products Affected
jeecg
- jeecg_boot