CVE-2023-41542 | jeecg-boot 3.5.3 jmreport/qurestSql sql injection

Posted by Angelo Barbosa | Dec 30, 2023 | CVE

A vulnerability, which was classified as critical, has been found in jeecg-boot 3.5.3. Affected by this issue is some unknown functionality of the file jmreport/qurestSql. The manipulation leads to sql injection.

This vulnerability is handled as CVE-2023-41542. The attack may be launched remotely. There is no exploit available.

CVE-2023-41542 | jeecg-boot 3.5.3 jmreport/qurestSql sql injection

Related Posts

CVE-2023-45177 | IBM MQ 9.0/9.1/9.2/9.3 Clustering denial of service (XFDB-268066)

CVE-2024-45053 | ethyca fides up to 2.43.x Jinja Template special elements used in a template engine (GHSA-c34r-238x-f7qx)

CVE-2024-5861 | WP Easy Pay Plugin up to 4.2.3 on WordPress authorization

CVE-2024-36420 | FlowiseAI Flowise up to 1.4.3 openai-assistants-file fileName information disclosure (GHSL-2023-232)