mlsql-api-console
mlsql-api-console copied to clipboard
allwefantasy
Bumps [mysql-connector-java](https://github.com/mysql/mysql-connector-j) from 5.1.46 to 8.0.28. Changelog Sourced from mysql-connector-java's changelog. Changelog https://dev.mysql.com/doc/relnotes/connector-j/8.0/en/ Version 8.0.29 Fix for Bug#21978230, COMMENT PARSING NOT PROPER IN PREPSTMT.EXECUTEBATCH(). Fix for Bug#81468 (23312764), MySQL server...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
检测到 allwefantasy/mlsql-api-console 一共引入了122个开源组件,存在76个漏洞 ``` 漏洞标题:Oracle MySQL 输入验证错误漏洞 缺陷组件:mysql:[email protected] 漏洞编号:CVE-2021-2471 漏洞描述:Oracle MySQL是美国甲骨文(Oracle)公司的一套开源的关系数据库管理系统。 Oracle MySQL 的 MySQL Connectors 产品中存在输入验证错误漏洞,该漏洞允许高特权攻击者通过多种协议访问网络来破坏 MySQL 连接器。成功攻击此漏洞会导致对关键数据的未授权访问或对所有 MySQL 连接器可访问数据的完全访问,以及导致 MySQL 连接器挂起或频繁重复崩溃。 影响范围:(∞, 8.0.27) 最小修复版本:8.0.27 缺陷组件引入路径:allwefantasy:[email protected]>tech.mlsql:[email protected]>mysql:[email protected] ``` 另外还有76个漏洞,详细报告:https://mofeisec.com/jr?p=iedd7b
## Description Running the following code snippet to expand json {"key": "value", "key_2":"value_2"}. ``` SELECT '{"key": "value", "key_2":"value_2"}' AS col_1 , "hangzhou" AS city AS table_1; run table_1 as JsonExpandExt.``...
Bumps commons-compress from 1.18 to 1.21. [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a...