Moderate severityNVD Advisory· Published Mar 10, 2022· Updated Aug 4, 2024
CVE-2021-44585
CVE-2021-44585
Description
A Cross Site Scripting (XSS) vulnerabilitiy exits in jeecg-boot 3.0 in /jeecg-boot/jmreport/view with a mouseover event.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.jeecgframework.boot:jeecg-boot-baseMaven | < 3.1.0 | 3.1.0 |
org.jeecgframework.boot:jeecg-boot-base-coreMaven | < 3.1.0 | 3.1.0 |
Affected products
3- jeecg-boot/jeecg-bootdescription
- ghsa-coords2 versionspkg:maven/org.jeecgframework.boot/jeecg-boot-basepkg:maven/org.jeecgframework.boot/jeecg-boot-base-core
< 3.1.0+ 1 more
- (no CPE)range: < 3.1.0
- (no CPE)range: < 3.1.0
Patches
Vulnerability mechanics
Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
4- github.com/advisories/GHSA-q448-6c3m-cxmjghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-44585ghsaADVISORY
- github.com/jeecgboot/jeecg-boot/commit/dbba190980fe44ab5377703dc1a9487806ee2a91ghsaWEB
- github.com/jeecgboot/jeecg-boot/issues/3223ghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.