Venom-404

**Name of the Vulnerable Software and Affected Versions** jeecg-boot version 3.4.4 **Description** The issue is an authenticated SQL injection vulnerability. It occurs via the building block report component. **Recommendations** For jeecg-boot version 3.4.4, consider restricting access to the building block report component until a patch is available. As a temporary workaround, avoid using the building block report component to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.