Súbít #687606: WeiYe-Jing DataX-Web <= 2.1.2 SQL Injectionbayani

KuraWeiYe-Jing DataX-Web <= 2.1.2 SQL Injection
GaskiyaDataX-Web is a distributed data synchronization tool with web-based management. The application supports incremental data synchronization based on ID or timestamp. When using ID-based incremental sync, the system needs to query the maximum ID value from the source table. However, the table name and primary key column name are taken directly from user input without proper validation, leading to SQL injection.
Manga⚠️ https://github.com/Xzzz111/exps/blob/main/archives/datax-web-sql-injection-1/report.md
Màdùmga sh7err (UID 91441)
Furta11/02/2025 16:50 (4 Wurɗi 전)
Gargajiya11/15/2025 16:11 (13 days later)
HalittaShingilam
VulDB gite332585 [WeiYe-Jing datax-web har 2.1.2 SQL Injection]
Nganji19

GurɗoGumtiGada

Do you need the next level of professionalism?

Upgrade your account now!