CVE-2023-38988

EPSS 0.07% · P21 Updated Feb 26, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2023-38988

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

An issue in the delete function in the OaNotifyController class of jeesite v1.2.6 allows authenticated attackers to arbitrarily delete notifications created by Administrators.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

jeesite 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

卓源软件 Jeesite是中国卓源软件公司的一套开源的Java EE企业级快速开发平台。该平台包括系统权限组件、数据权限组件、数据字典组件、核心工具组件、视图操作组件、工作流组件和代码生成组件等。 jeesite 1.2.6版本存在安全漏洞，该漏洞源于OaNotifyController类中的delete函数允许攻击者任意删除管理员创建的通知。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2023-38988

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2023-38988

请登录查看更多情报信息。

Same Patch Batch · n/a · 2023-07-28 · 22 CVEs total

CVE-2023-3988	6.3 MEDIUM	Cafe Billing System Order index.php sql injection
CVE-2023-39015		WebMagic 代码注入漏洞
CVE-2023-31932		Rail Pass Management System SQL注入漏洞
CVE-2023-31933		Rail Pass Management System SQL注入漏洞
CVE-2023-31934		Rail Pass Management System 跨站脚本漏洞
CVE-2023-31935		Rail Pass Management System 跨站脚本漏洞
CVE-2023-31936		Rail Pass Management System SQL注入漏洞
CVE-2023-31937		Rail Pass Management System SQL注入漏洞
CVE-2023-37754		PowerJob 安全漏洞
CVE-2023-38992		Jeecg-Boot SQL注入漏洞
CVE-2023-39010		BoofCV 代码注入漏洞
CVE-2023-39013		Duke 代码注入漏洞
CVE-2023-39016		bboss 代码注入漏洞
CVE-2023-39017		Terracotta Quartz Scheduler 代码注入漏洞
CVE-2023-39018		FFmpeg 代码注入漏洞
CVE-2023-39020		Stanford CoreNlp 代码注入漏洞
CVE-2023-39021		Wix Embedded MySql 代码注入漏洞
CVE-2023-39022		Ericsson OSCORE 代码注入漏洞
CVE-2023-39023		University Compass 代码注入漏洞
CVE-2022-31454		Yii 跨站脚本漏洞

Showing top 20 of 22 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2023-38988

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2023-38988

I. Basic Information for CVE-2023-38988

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2023-38988

III. Intelligence Information for CVE-2023-38988

Same Patch Batch · n/a · 2023-07-28 · 22 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2023-38988

Leave a comment