945522383

**Name of the Vulnerable Software and Affected Versions** jeecg-boot version 3.5.1 **Description** The issue is a SQL injection vulnerability. It occurs via the `title` parameter at the "/sys/dict/loadTreeData" API endpoint. **Recommendations** For jeecg-boot version 3.5.1, consider restricting access to the "/sys/dict/loadTreeData" API endpoint to minimize the risk of exploitation. Avoid using the `title` parameter in this endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.