Описание
simple-admin-core SQL Injection vulnerability
An issue was discovered in simple-admin-core v1.2.0 thru v1.6.7. The /sys-api/role/update interface in the simple-admin-core system has a limited SQL injection vulnerability, which may lead to partial data leakage or disruption of normal system operations.
Пакеты
Наименование
github.com/suyuan32/simple-admin-core
go
Затронутые версииВерсия исправления
>= 1.2.0, < 1.6.8
1.6.8
Связанные уязвимости
CVSS3: 7
nvd
5 месяцев назад
An issue was discovered in simple-admin-core v1.2.0 thru v1.6.7. The /sys-api/role/update interface in the simple-admin-core system has a limited SQL injection vulnerability, which may lead to partial data leakage or disruption of normal system operations.