Moderate severityNVD Advisory· Published Jun 16, 2023· Updated Dec 17, 2024
CVE-2023-34660
CVE-2023-34660
Description
jjeecg-boot V3.5.0 has an unauthorized arbitrary file upload in /jeecg-boot/jmreport/upload interface.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.jeecgframework.boot:jeecg-boot-parentMaven | <= 3.5.0 | — |
Affected products
2- jjeecg-boot/jjeecg-bootdescription
Patches
Vulnerability mechanics
References
3- github.com/advisories/GHSA-jf2f-hvxx-4rqxghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2023-34660ghsaADVISORY
- github.com/jeecgboot/jeecg-boot/issues/4990ghsaWEB
News mentions
0No linked articles in our index yet.