2 matches found
CVE-2022-48114
RuoYi up to v4.7.5 was discovered to contain a SQL injection vulnerability via the component /tool/gen/createTable...
CVE-2022-48114
CVE-2022-48114 affects RuoYi up to v4.7.5 with a SQL injection in the /tool/gen/createTable component. The vulnerability arises from the underlying input handling in that path, enabling network-based access with no user interaction and no privileges required. CVSS 3.1 metrics indicate high impact...