제출 #386413: DataGear datagear <=v5.0.0 Injection정보

제목DataGear datagear <=v5.0.0 Injection
설명DataGear v5.0.0 has a SpEL expression injection vulnerability leading to remote code execution in the Editing and Deletion functions of the Data Schema Page
원천⚠️ https://gitee.com/datagear/datagear/issues/IAF3H7
사용자
 nerowander (UID 72513)
제출2024. 08. 06. AM 04:43 (2 연령 ago)
모더레이션2024. 08. 06. AM 08:47 (4 hours later)
상태수락
VulDB 항목273697 [DataGear 까지 5.0.0 Data Schema Page ConversionSqlParamValueMapper.java evaluateVariableExpression 권한 상승]
포인트들15

이전개요다음

Do you want to use VulDB in your project?

Use the official API to access entries easily!