JeecgBoot SQL Injection Vulnerability Scope of Impact JeecgBoot has 44.9k stars in its usage range. Version: 3.9.0 Issue Description In the JeecgBoot online report API /jeecgboot/sys/api/loadDictItemByKeyword, improper handling of subquery statements allows attackers to concatenate SQL statements outside the blacklist, resulting in an SQL injection vulnerability. Root Cause The method in has an incomplete blacklist. The injected condition can be determined by observing the sort order. POC Vulnerable Endpoint Proof-of-Concept Code Conclusion The vulnerability exists due to insufficient validation of the keyword and the ability to inject subqueries. The provided PoCs demonstrate the successful exploitation of the vulnerability.