CVE-2022-22880

Published: Feb 16, 2022
Updated: May 9, 2024
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2022-22880" target="_blank" rel="noopener"> CVE-2022-22880
GHSA: <a href="https://github.com/advisories/GHSA-vh2r-x97c-2vpr" target="_blank" rel="noopener"> GHSA-vh2r-x97c-2vpr
Severity: Critical
Exploit:

Jeecg-boot v3.0 was discovered to contain a SQL injection vulnerability via the code parameter in /jeecg-boot/sys/user/queryUserByDepId.

CVSS v3:

CVSS v2:

CWEs:

OWASP TOP 10:

Software	From	Fixed in
jeecg / jeecg_boot	-	3.0.x
org.jeecgframework.boot / jeecg-boot-base	-	3.0.x
org.jeecgframework.boot / jeecg-boot-base-core	-	3.0.x

Vulnerability Database