Submit #648475: yangzongzhuan RuoYi ≤4.8.1 sqli injectioninfo

Titleyangzongzhuan RuoYi ≤4.8.1 sqli injection
DescriptionA vulnerability was found in yangzongzhuan RuoYi up to 4.8.1 .This vulnerability bypasses blacklist protection using %09 to conduct SQL injection attacks.
Source⚠️ https://github.com/mo957/vuln/blob/main/ruoyi_sqlinject/ruoyi_sqlinject.md
User
 toBBe (UID 89867)
Submission09/05/2025 07:36 (9 months ago)
Moderation09/15/2025 14:52 (10 days later)
StatusAccepted
VulDB entry323905 [yangzongzhuan RuoYi up to 4.8.1 Blacklist SqlUtil.java filterKeyword sql injection]
Points15

PreviousOverviewNext

Want to know what is going to be exploited?

We predict KEV entries!