CVE-2021-46089

Published: Jan 25, 2022
Updated: May 9, 2024
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2021-46089" target="_blank" rel="noopener"> CVE-2021-46089
GHSA: <a href="https://github.com/advisories/GHSA-26hm-r6mg-963c" target="_blank" rel="noopener"> GHSA-26hm-r6mg-963c
Severity: Critical
Exploit:

In JeecgBoot 3.0, there is a SQL injection vulnerability that can operate the database with root privileges.

CVSS v3:

CVSS v2:

CWEs:

OWASP TOP 10:

Software	From	Fixed in
jeecg / jeecg_boot	3.0	3.0.x
org.jeecgframework.boot / jeecg-boot-base	-	3.0.x
org.jeecgframework.boot / jeecg-boot-base-core	-	3.0.x

Vulnerability Database