| Title | cy-fast 1.0 SQL Injection |
|---|
| Description | The current version of cy-fast has an SQL injection vulnerability that allows attackers to execute SQL statements.
Due to the lack of comprehensive filtering of SQL statements, users can concatenate and execute unfiltered SQL functions. |
|---|
| Source | ⚠️ https://github.com/d3do-23/cvelist/blob/main/cy-fast/sqli1.md |
|---|
| User | d3do (UID 79609) |
|---|
| Submission | 06/01/2025 10h29 (há 3 meses) |
|---|
| Moderation | 08/01/2025 18h12 (2 days later) |
|---|
| Status | Aceite |
|---|
| VulDB Entry | 290820 [leiyuxi cy-fast 1.0 /sys/role/listData order Injecção SQL] |
|---|
| Points | 16 |
|---|