| शीर्षक | cy-fast 1.0 SQL Injection |
|---|
| विवरण | The current version of cy-fast has an SQL injection vulnerability that allows attackers to execute SQL statements.
Due to the lack of comprehensive filtering of SQL statements, users can concatenate and execute unfiltered SQL functions.
The issue lies in the route /sys/menu/listData.
|
|---|
| स्रोत | ⚠️ https://github.com/d3do-23/cvelist/blob/main/cy-fast/sqli4.md |
|---|
| उपयोगकर्ता | d3do (UID 79609) |
|---|
| सबमिशन | 07/01/2025 03:37 AM (2 साल पहले) |
|---|
| संयम | 08/01/2025 09:34 PM (2 days later) |
|---|
| स्थिति | स्वीकृत |
|---|
| VulDB प्रविष्टि | 290858 [leiyuxi cy-fast 1.0 /sys/menu/listData order SQL इंजेक्शन] |
|---|
| अंक | 17 |
|---|