A vulnerability was found in jeecg-boot 3.5.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file SysDictMapper.java of the component Sleep Command Handler. The manipulation leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-224629 was assigned to this vulnerability.
References
Link | Resource |
---|---|
https://github.com/private-null/report/blob/main/README.md | Broken Link |
https://vuldb.com/?ctiid.224629 | Permissions Required Third Party Advisory |
https://vuldb.com/?id.224629 | Third Party Advisory |
Configurations
History
07 Apr 2023, 14:21
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:jeecg:jeecg_boot:3.5.0:*:*:*:*:*:*:* | |
First Time |
Jeecg
Jeecg jeecg Boot |
|
CWE | CWE-89 | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
References | (MISC) https://vuldb.com/?ctiid.224629 - Permissions Required, Third Party Advisory | |
References | (MISC) https://github.com/private-null/report/blob/main/README.md - Broken Link | |
References | (MISC) https://vuldb.com/?id.224629 - Third Party Advisory |
30 Mar 2023, 22:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-03-30 22:15
Updated : 2024-05-14 12:07
NVD link : CVE-2023-1741
Mitre link : CVE-2023-1741
CVE.ORG link : CVE-2023-1741
JSON object : View
Products Affected
jeecg
- jeecg_boot
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')