Soumettre #590150: ESAPI esapi-java-legacy 2.6.2.0 SQL injection filtering bypass2information

TitreESAPI esapi-java-legacy 2.6.2.0 SQL injection filtering bypass2
DescriptionWhen using MySQL codec's ANSI mode and ESAPI library for encoding in ESAPI2.6.2.0 components, SQL injection defense can be bypassed. Attackers can exploit this vulnerability to bypass SQL injection defense and launch SQL injection attacks
La source⚠️ https://github.com/uglory-gll/javasec/blob/main/ESAPI.md
Utilisateur
 uglory (UID 82151)
Soumission04/06/2025 15:23 (il y a 10 mois)
Modérer28/06/2025 09:15 (24 days later)
StatutDupliqué
Entrée VulDB314321 [ESAPI esapi-java-legacy jusqu’à 2.6.2.0 SQL Injection Defense Encoder.encodeForSQL Exécution de code à distance]
Points0

PrécédentAperçuSuivant

Do you know our Splunk app?

Download it now for free!