High severityNVD Advisory· Published Feb 7, 2025· Updated Mar 22, 2025
CVE-2024-57606
CVE-2024-57606
Description
SQL injection vulnerability in Beijing Guoju Information Technology Co., Ltd JeecgBoot v.3.7.2 allows a remote attacker to obtain sensitive information via the getTotalData component.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
org.jeecgframework.boot:jeecg-boot-commonMaven | < 3.7.3 | 3.7.3 |
Affected products
2- Beijing Guoju Information Technology Co., Ltd/JeecgBootdescription
Patches
Vulnerability mechanics
References
3- github.com/advisories/GHSA-wfpm-qchc-6cf9ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2024-57606ghsaADVISORY
- github.com/jeecgboot/JeecgBoot/issues/7665ghsaWEB
News mentions
0No linked articles in our index yet.