CVE-2023-34660

MEDIUM6.5EPSS 0.09%

jeecg-boot unrestricted file upload vulnerability

Published: 6/16/2023Modified: 11/8/2023

Description

jeecg-boot V3.5.0 has an unauthorized arbitrary file upload in `/jeecg-boot/jmreport/upload` interface.

Source	Version	Severity	Vector
osv	CVSS 3.1	MEDIUM6.5	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N