org.jeecgframework.boot:jeecg-boot-base@3.0 vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the org.jeecgframework.boot:jeecg-boot-base package. This does not include vulnerabilities belonging to this package’s dependencies.

Automatically find and fix vulnerabilities affecting your projects. Snyk scans for vulnerabilities and provides fixes for free.
Fix for free
Vulnerability Vulnerable Version
  • L
Information Exposure

Affected versions of this package are vulnerable to Information Exposure of potentially sensitive details, such as phone numbers and usernames.

How to fix Information Exposure?

There is no fixed version for org.jeecgframework.boot:jeecg-boot-base.

[0,)
  • M
Information Exposure

Affected versions of this package are vulnerable to Information Exposure via the httptrace interface, which may allow viewing of users' cookies.

How to fix Information Exposure?

There is no fixed version for org.jeecgframework.boot:jeecg-boot-base.

[0,)
  • M
Cross-site Scripting (XSS)

Affected versions of this package are vulnerable to Cross-site Scripting (XSS) via a mouseover event in /jeecg-boot/jmreport/view.

How to fix Cross-site Scripting (XSS)?

There is no fixed version for org.jeecgframework.boot:jeecg-boot-base.

[0,)