MyBatis PageHelper versions 3.5.x through 5.3.x were discovered to contain a time-blind SQL injection vulnerability via the orderBy parameter.
github.com/pagehelper/Mybatis-PageHelper
github.com/pagehelper/Mybatis-PageHelper.git
github.com/pagehelper/Mybatis-PageHelper/commit/554a524af2d2b30d09505516adc412468a84d8fa
github.com/pagehelper/Mybatis-PageHelper/issues/674
github.com/yangfar/CVE/blob/main/CVE-2022-42227.md
nvd.nist.gov/vuln/detail/CVE-2022-28111
pagehelper.github.io
www.cnblogs.com/secload/articles/16061420.html