PT-2023-29265 · Unknown · Jeecgboot Jimureport
Keecth
·
Publicado
2023-08-21
·
Atualizado
2024-05-17
·
CVE-2023-4450
CVSS v3.1
9.8
Crítica
| Vetor | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
jeecgboot JimuReport versions up to 1.6.0
Description
A critical issue was found in the Template Handler component, allowing for remote injection attacks. The exploit has been disclosed publicly.
Recommendations
For jeecgboot JimuReport versions up to 1.6.0, upgrade to version 1.6.1 to address this issue.
Exploit
Correção
Special Elements Injection
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Jeecgboot Jimureport