haby0

SQL injection risk in novel-admin submodule User request: https://github.com/201206030/novel-plus/blob/4540c3781e9bc1d47c388cb8b6058ed66e094586/novel-admin/src/main/java/com/java2nb/novel/controller/BookController.java#L49 Database query: https://github.com/201206030/novel-plus/blob/4540c3781e9bc1d47c388cb8b6058ed66e094586/novel-admin/src/main/resources/mybatis/novel/BookMapper.xml#L48 The user can control the sort and order variables. When mybatis uses $, the user input will be...

互联网是有存在案例的。

> Hi, > > could you please take a look at below page and contact Red Hat security team about the vulnerability? > > https://access.redhat.com/security/team/contact > > Thanks, Martin Thanks.

@mwperina I have sent the vulnerability report to [email protected], please check.

> Great, thanks a lot for the report! Have you received the report?

> Hi, > > I'm not part of security team, so I don't have any additional information. You can try to react on you communication with [[email protected]](mailto:[email protected]) to ask additional...

@mwperina Can you give me an email? I will submit the vulnerability information to you.