CVE-2023-42268

Published: Sep 8, 2023
Updated: May 9, 2024
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2023-42268" target="_blank" rel="noopener"> CVE-2023-42268
GHSA: <a href="https://github.com/advisories/GHSA-m7vh-pgfq-v4rq" target="_blank" rel="noopener"> GHSA-m7vh-pgfq-v4rq
Severity: Critical
Exploit:

Jeecg boot up to v3.5.3 was discovered to contain a SQL injection vulnerability via the component /jeecg-boot/jmreport/show.

CVSS v3:

CWEs:

OWASP TOP 10:

Software	From	Fixed in
org.jeecgframework.boot / jeecg-boot-parent	-	3.5.3.x
jeecg / jeecg_boot	-	3.5.3.x

Vulnerability Database