CVE-2026-3672 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

A vulnerability has been found in JeecgBoot up to 3.9.1. Affected is the function isExistSqlInjectKeyword of the file /jeecg-boot/sys/api/getDictItems. Such man…
Medium CVSS: 5.3

CVE-2026-3672

A vulnerability has been found in JeecgBoot up to 3.9.1. Affected is the function isExistSqlInjectKeyword of the file /jeecg-boot/sys/api/getDictItems. Such manipulation leads to sql injection. The attack may be performed from remote. The exploit has been disclosed to the public and may be used.
Vendor
-
Product
-
CWE
CWE-74
Yayın Tarihi
2026-03-07 22:15:50
Güncelleme
2026-03-09 13:35:07
Source Identifier
cna@vuldb.com
KEV Date Added
-

Kategoriler

CWE-74 MEDIUM 2026

Referanslar

https://vuldb.com/?ctiid.349569 https://vuldb.com/?id.349569 https://vuldb.com/?submit.765093 https://www.yuque.com/la12138/pa2fpb/ab1i8wyeeg1zzgq5?singleDoc