提交 #386413: DataGear datagear <=v5.0.0 Injection信息

标题DataGear datagear <=v5.0.0 Injection
描述DataGear v5.0.0 has a SpEL expression injection vulnerability leading to remote code execution in the Editing and Deletion functions of the Data Schema Page
来源⚠️ https://gitee.com/datagear/datagear/issues/IAF3H7
用户
 nerowander (UID 72513)
提交2024-08-06 04時43分 (2 年前)
管理2024-08-06 08時47分 (4 hours later)
状态已接受
VulDB条目273697 [DataGear 直到 5.0.0 Data Schema Page ConversionSqlParamValueMapper.java evaluateVariableExpression 权限提升]
积分15

上一步一览下一步

Might our Artificial Intelligence support you?

Check our Alexa App!