제출 #475302: cy-fast 1.0 SQL Injection정보

제목cy-fast 1.0 SQL Injection
설명The current version of cy-fast has an SQL injection vulnerability that allows attackers to execute SQL statements. Due to the lack of comprehensive filtering of SQL statements, users can concatenate and execute unfiltered SQL functions. the vulnerability hapens in SysUserController.java.
원천⚠️ https://github.com/d3do-23/cvelist/blob/main/cy-fast/sqli2.md
사용자
 d3do (UID 79609)
제출2025. 01. 06. AM 11:00 (1 년도 ago)
모더레이션2025. 01. 08. PM 06:13 (2 days later)
상태수락
VulDB 항목290821 [leiyuxi cy-fast 1.0 /sys/user/listData order SQL 주입]
포인트들17

Do you know our Splunk app?

Download it now for free!