3 matches found
CVE-2022-28111
MyBatis PageHelper v1.x.x-v3.7.0 v4.0.0-v5.0.0,v5.1.0-v5.3.0 was discovered to contain a time-blind SQL injection vulnerability via the orderBy parameter...
CVE-2022-28111
MyBatis PageHelper v1.x.x-v3.7.0 v4.0.0-v5.0.0,v5.1.0-v5.3.0 was discovered to contain a time-blind SQL injection vulnerability via the orderBy parameter...
CVE-2022-28111
CVE-2022-28111 concerns MyBatis PageHelper, affecting v1.x.x–3.7.0 and v4.0.0–5.0.0, plus v5.1.0–5.3.0. The root cause is a time-blind SQL injection via the orderBy parameter that allows external input to influence SQL statements without proper validation. Impact is described as high, with a netw...