Headline
GHSA-784x-7w88-w564: JeecgBoot vulnerable to SQL injection in queryTableDictItemsByCode
JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryTableDictItemsByCode in method org.jeecg.modules.api.controller.SystemApiController.
JeecgBoot vulnerable to SQL injection in queryTableDictItemsByCode
Moderate severity GitHub Reviewed Published Jun 19, 2023 to the GitHub Advisory Database • Updated Jun 19, 2023
Related news
CVE-2023-34602: SQL Injection in 3.5.1 · Issue #4983 · jeecgboot/jeecg-boot
JeecgBoot up to v 3.5.1 was discovered to contain a SQL injection vulnerability via the component queryTableDictItemsByCode at org.jeecg.modules.api.controller.SystemApiController.