| 제목 | xianrendzw EasyReport Releases SQL Injection |
|---|
| 설명 | Project Information
Project: xianrendzw/EasyReport
Type: Stored SQL Injection
Severity: High (CVSS 7.5)
CWE: CWE-89 (SQL Injection)
Vulnerability Description
EasyReport contains a stored SQL injection where report parameters are stored via MyBatis and later used in SQL concatenation without parameterization.
Data Flow
REST API (reportParams) → MyBatis → SQL concatenation → execute()
Write Path
REST endpoint accepts report configuration with SQL parameters
Parameters stored via MyBatis to database
Read Path
Stored report parameters retrieved during report generation
Values concatenated into SQL strings via MyBatis ${} syntax or Java string concatenation
SQL executed without parameterization |
|---|
| 원천 | ⚠️ https://github.com/Ku4D3/bug_story/blob/main/report_10.md |
|---|
| 사용자 | Ku4D3 (UID 97639) |
|---|
| 제출 | 2026. 04. 28. AM 04:50 (1 월 ago) |
|---|
| 모더레이션 | 2026. 05. 25. PM 09:28 (28 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 365543 [xianrendzw EasyReport 까지 2.0.17.0522_Beta REST Endpoint execute reportParams SQL 주입] |
|---|
| 포인트들 | 20 |
|---|