Enviar #475302: cy-fast 1.0 SQL Injectioninformación

Títulocy-fast 1.0 SQL Injection
DescripciónThe current version of cy-fast has an SQL injection vulnerability that allows attackers to execute SQL statements. Due to the lack of comprehensive filtering of SQL statements, users can concatenate and execute unfiltered SQL functions. the vulnerability hapens in SysUserController.java.
Fuente⚠️ https://github.com/d3do-23/cvelist/blob/main/cy-fast/sqli2.md
Usuario
 d3do (UID 79609)
Sumisión2025-01-06 11:00 (hace 1 Año)
Moderación2025-01-08 18:13 (2 days later)
EstadoAceptado
Entrada de VulDB290821 [leiyuxi cy-fast 1.0 /sys/user/listData order inyección SQL]
Puntos17

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!