3 matches found
CVE-2020-5428
In applications using Spring Cloud Task 2.2.4.RELEASE and below, may be vulnerable to SQL injection when exercising certain lookup queries in the TaskExplorer...
CVE-2020-5428 Possibility of SQL Injection in Spring Cloud Task Execution Sorting Query
In applications using Spring Cloud Task 2.2.4.RELEASE and below, may be vulnerable to SQL injection when exercising certain lookup queries in the TaskExplorer...
CVE-2020-5428
Summary: CVE-2020-5428 affects Spring Cloud Task 2.2.4.RELEASE and earlier, with a reported SQL injection in the TaskExplorer lookup queries. The root cause is described as insufficient input validation in the PageRequest value used by JdbcTaskExecutionDao, potentially allowing arbitrary SQL exec...