New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[CVE-2022-45206]/sys/duplicate/check存在sql注入漏洞 #4129
Comments
你这个是哪个版本,针对注释这种我们处理过 |
就是最新的,但是可以绕过
…---原始邮件---
发件人: ***@***.***>
发送时间: 2022年10月30日(周日) 下午3:33
收件人: ***@***.***>;
抄送: ***@***.******@***.***>;
主题: Re: [jeecgboot/jeecg-boot] /sys/duplicate/check存在sql注入漏洞 (Issue #4129)
你这个是哪个版本,针对注释这种我们处理过
—
Reply to this email directly, view it on GitHub, or unsubscribe.
You are receiving this because you authored the thread.Message ID: ***@***.***>
|
截图版本号 |
你们自己看我发的内容,里面你们加check了啊,但是check有问题,可以被bypass我已经说的很详细了,我是直接clone你们的项目
…---原始邮件---
发件人: ***@***.***>
发送时间: 2022年10月30日(周日) 下午3:41
收件人: ***@***.***>;
抄送: ***@***.******@***.***>;
主题: Re: [jeecgboot/jeecg-boot] /sys/duplicate/check存在sql注入漏洞 (Issue #4129)
截图版本号
—
Reply to this email directly, view it on GitHub, or unsubscribe.
You are receiving this because you authored the thread.Message ID: ***@***.***>
|
okok好的好的,因为我看到的是checksql可以被绕过,所以就提出来了哈哈哈2333
…---原始邮件---
发件人: ***@***.***>
发送时间: 2022年10月30日(周日) 下午4:22
收件人: ***@***.***>;
抄送: ***@***.******@***.***>;
主题: Re: [jeecgboot/jeecg-boot] /sys/duplicate/check存在sql注入漏洞 (Issue #4129)
改成这样就好了
—
Reply to this email directly, view it on GitHub, or unsubscribe.
You are receiving this because you authored the thread.Message ID: ***@***.***>
|
zhangdaiscott
added a commit
that referenced
this issue
Nov 2, 2022
已修复 |
好的,辛苦嘞 |
azraelxuemo
changed the title
/sys/duplicate/check存在sql注入漏洞
[CVE-2022-45206]/sys/duplicate/check存在sql注入漏洞
Dec 7, 2022
XKC1025
pushed a commit
to XKC1025/jeecg-boot
that referenced
this issue
Mar 13, 2023
EightMonth
pushed a commit
to EightMonth/jeecg-boot
that referenced
this issue
Dec 28, 2023
拼接SQL,你们是认真的!!! |
1 similar comment
拼接SQL,你们是认真的!!! |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
jeecg-boot漏洞.pdf
The text was updated successfully, but these errors were encountered: