| Título | youlaitech youlai-boot v2.21.1 SQL Injection |
|---|
| Descrição | youlai-boot contains a SQL injection vulnerability in the user list sorting functionality. The GET /api/v1/users endpoint accepts user-controlled sorting parameters through UserQuery. Although sortBy is restricted by a whitelist validator, the order parameter is not validated and is concatenated directly into the final SQL statement through MyBatis ${} string interpolation. |
|---|
| Fonte | ⚠️ https://fx4tqqfvdw4.feishu.cn/docx/EBZLdUqt4ogm4Px7jxuck1RQnHe?from=from_copylink |
|---|
| Utilizador | xcxr (UID 86629) |
|---|
| Submissão | 09/04/2026 03h14 (há 2 meses) |
|---|
| Moderação | 02/05/2026 10h21 (23 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 360825 [youlaitech youlai-boot até 2.21.1 Users Endpoint UserController.java getUserList order Injeção SQL] |
|---|
| Pontos | 20 |
|---|