제출 #798600: baomidou dynamic-datasource 2.5.0+ SpEL Injection정보

제목baomidou dynamic-datasource 2.5.0+ SpEL Injection
설명dynamic-datasource evaluates @DS values as SpEL expressions in DsSpelExpressionProcessor#doDetermineDatasource using StandardEvaluationContext and SpelExpressionParser without input restriction. When applications use patterns like @DS("#tenant") and bind tenant from untrusted request input, attacker-controlled expressions can be evaluated at runtime. This enables expression injection and can lead to remote code execution depending on runtime exposure and expression payload.
원천⚠️ https://github.com/baomidou/dynamic-datasource/issues/766
사용자
 Winegee (UID 96308)
제출2026. 04. 07. AM 09:39 (20 날 ago)
모더레이션2026. 04. 25. PM 06:10 (18 days later)
상태수락
VulDB 항목359624 [baomidou dynamic-datasource 2.5.0 StandardEvaluationContext/SpelExpressionParser DsSpelExpressionProcessor.java DsSpelExpressionProcessor#doDetermineDatasource 권한 상승]
포인트들20

이전개요다음

Do you know our Splunk app?

Download it now for free!