SpringBlade v3.2.0 and below was discovered to contain a SQL injection vulnerability via the component customSqlSegment.