SQL Injection in Kylin

2020-07-27T22:51:47
ID GHSA-7HMH-8GWV-MFVQ
Type github
Reporter GitHub Advisory Database
Modified 2020-07-27T22:51:47

Description

Kylin has some restful apis which will concatenate SQLs with the user input string, a user is likely to be able to run malicious database queries.