Submit #552387: https://github.com/joey-zhou/xiaozhi-esp32-server-java xiaozhi-esp32-server-java 1.0 SQL Injectioninfo

Titlehttps://github.com/joey-zhou/xiaozhi-esp32-server-java xiaozhi-esp32-server-java 1.0 SQL Injection
DescriptionThe /api/user/update interface has unauthorized access and sql injection vulnerability
Source⚠️ https://github.com/exp3n5ive/Vul/blob/main/xiaozhi-sqli/xiaozhi-sqli.md
User
 exp3n5ive (UID 83031)
Submission04/07/2025 06:06 (1 Year ago)
Moderation04/07/2025 08:40 (3 hours later)
StatusAccepted
VulDB entry303628 [joey-zhou xiaozhi-esp32-server-java up to a14fe8115842ee42ab5c7a51706b8a85db5200b7 /api/user/update state sql injection]
Points14

PreviousOverviewNext

Want to know what is going to be exploited?

We predict KEV entries!