Unauthorized File Upload Vulnerability in jeecg-boot by Jeecg
CVE-2023-34660
6.5MEDIUM
What is CVE-2023-34660?
jeecg-boot version 3.5.0 is prone to an unauthorized arbitrary file upload vulnerability via the /jeecg-boot/jmreport/upload interface. This flaw could allow unprivileged users to upload malicious files, potentially compromising the integrity of the server and the confidentiality of sensitive data.