cbcvebase.
CVE-2023-34659
published 2023-06-16

CVE-2023-34659: jeecg-boot 3.5.0 and 3.5.1 have a SQL injection vulnerability the id parameter of the /jeecg-boot/jmreport/show interface.

PriorityP180critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
12.48%
95.7th percentile
jeecg-boot 3.5.0 and 3.5.1 have a SQL injection vulnerability the id parameter of the /jeecg-boot/jmreport/show interface.

Affected

2 ranges
VendorProductVersion rangeFixed in
jeecgjeecg_boot
jeecgjeecg_boot

Detection & IOCsextracted from sources · hover to see the quote

url/jeecg-boot/jmreport/show
command{"id":"961455b47c0b86dc961e90b5893bff05","apiUrl":"","params":"{\"id\":\"1' or '%1%' like (updatexml(0x3a,concat(1,(version())),1)) or '%%' like '\"}"}
  • Look for POST requests to /jeecg-boot/jmreport/show with a JSON body containing SQL injection payloads in the nested 'id' parameter (e.g., updatexml-based error injection).
  • Detect exploitation by matching response body for XPATH syntax error or SQLException strings, combined with Content-Type: application/json in the response header and HTTP 200 status.
  • Content-Type header of the request must be application/json;charset=UTF-8 for this attack vector.
  • Identify JeecgBoot instances via Shodan favicon hash 1380908726 or FOFA icon_hash=1380908726 for asset discovery.
  • ·Vulnerability affects JeecgBoot versions 3.5.0 and 3.5.1 only; other versions are not confirmed vulnerable.
  • ·The SQL injection is unauthenticated (PR:N), making it exploitable without credentials, which increases exposure risk.
  • ·EPSS score of 0.91195 (99.648th percentile) indicates very high real-world exploitation probability; prioritize detection and patching.

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
vulncheck9.8CRITICAL
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.