2 matches found
CVE-2023-49371
RuoYi up to v4.6 was discovered to contain a SQL injection vulnerability via /system/dept/edit...
CVE-2023-49371
CVE-2023-49371 affects Ruoyi (up to v4.6) with a SQL injection in the /system/dept/edit endpoint. The vulnerability is high severity (CVSS 3.1: 9.8, NETWORK, no user interaction). Returns no explicit patch in the provided documents; a PTSecurity advisory notes the issue and suggests restricting a...