Submit #708321: 北京凯特伟业科技有限公司 jepaas v7.2.8 SQL Injectioninfo

Titel	北京凯特伟业科技有限公司 jepaas v7.2.8 SQL Injection
Beschreibung	JEPaaS v7.2.8 /je/postil/postil/loadPostil interface SQL injection vulnerability The keyWord parameter uses string concatenation, leading to a SQL injection vulnerability. https://github.com/ha1yu-Yiqiyin/warehouse/blob/main/jepaas-v7.2.8-sqlinject1.md
Quelle	⚠️ https://github.com/ha1yu-Yiqiyin/warehouse/blob/main/jepaas-v7.2.8-sqlinject1.md
Benutzer	red0_ha1yu (UID 61457)
Einreichung	07.12.2025 13:19 (vor 6 Monaten)
Moderieren	25.12.2025 10:52 (18 days later)
Status	Akzeptiert
VulDB Eintrag	338416 [ketr JEPaaS bis 7.2.8 loadPostil postilService.loadPostils keyWord SQL Injection]
Punkte	18

Do you want to use VulDB in your project?

Use the official API to access entries easily!