GHSA-hmvw-66jm-h9fh

Source
https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2022/07/GHSA-hmvw-66jm-h9fh/GHSA-hmvw-66jm-h9fh.json
Aliases
  • CVE-2022-34114
Published
2022-07-23T00:00:15Z
Modified
2022-08-16T03:30:24.649579Z
Details

Dataease v1.11.1 was discovered to contain a SQL injection vulnerability via the parameter dataSourceId. Version 1.11.2 contains a fix.

References

Affected packages

Maven / io.dataease:dataease-plugin-common

io.dataease:dataease-plugin-common

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0
Fixed
1.11.2

Affected versions

1.*

1.0
1.1
1.10.0
1.11.0
1.11.1
1.2
1.3
1.4
1.5
1.6
1.7
1.8.0
1.9.0