CVE-2021-37306

An Insecure Permissions issue in jeecg-boot 2.4.5 and earlier allows remote attackers to gain escalated privilege and view sensitive information via api uri: api uri:/sys/user/checkOnlyUser?username=admin.
References
Link Resource
https://github.com/jeecgboot/jeecg-boot/issues/2794 Third Party Advisory
Configurations

Configuration 1

cpe:2.3:a:jeecg:jeecg:*:*:*:*:*:*:*:*

Information

Published : 2023-02-03 06:15

Updated : 2023-02-09 06:48


NVD link : CVE-2021-37306

Mitre link : CVE-2021-37306

Products Affected
No products.
CWE