ContiNew Admin SQL注入漏洞

ContiNew Admin is ContiNew open source a continuous iterative optimization of the front-end and back-end separation of the middle and back-end management system framework. ContiNew Admin version 3.2.0 SQL injection vulnerability exists , the vulnerability stems from the file...

PT-2024-38837 · Unknown · Continew Admin

Name of the Vulnerable Software and Affected Versions: ContiNew Admin version 3.2.0 Description: A critical issue was found in ContiNew Admin, affecting the function top.continew.starter.extension.crud.controller.BaseControllerpage of the file /api/system/user?deptId=1&page=1&size=10. The...