CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

RedhatCVE•added 2026/04/28 1:22 a.m.•2 views

CVE-2026-7045

A vulnerability was determined in baomidou dynamic-datasource 2.5.0. Affected by this vulnerability is the function DsSpelExpressionProcessordoDetermineDatasource of the file dynamic-datasource-spring/src/main/java/com/baomidou/dynamic/datasource/processor/DsSpelExpressionProcessor.java of the...

6.5CVSS5.2AI score0.00067EPSS

Exploits0References1

vulnersOsv•added 2026/04/27 12:30 a.m.•4 views

cc.allio.uno:uno-data-db (>=1.1.9 <=1.2.1), cc.allio.uno:uno-test (>=1.1.9 <=1.2.1) +196 more potentially affected by CVE-2026-7045 via com.baomidou:dynamic-datasource-spring (>=4.0.0-B1 <=4.5.0)

com.baomidou:dynamic-datasource-spring MAVEN version =4.0.0-B1, =1.1.9, =1.1.9, =2024.1.1.0, =2023.5.1.0, =2022.5.0.0, =2022.4.1.0, =1.0.0-JDK21, =1.0.0-JDK21, =5.2.4, =4.0.0, =4.0.0, =4.5.0 and more Source cves: CVE-2026-7045 Source advisory: OSV:GHSA-6RMM-PG23-5F8Q...

6.5CVSS6.5AI score0.00067EPSS

Exploits0

OSV•added 2026/04/27 12:30 a.m.•1 views

GHSA-6RMM-PG23-5F8Q Dynamic-Datasource has an Injection vulnerability

6.3CVSS5.5AI score0.00067EPSS

Exploits0References8

Github Security Blog•added 2026/04/27 12:30 a.m.•3 views

Dynamic-Datasource has an Injection vulnerability

6.5CVSS6.3AI score0.00067EPSS

Exploits0References9Affected Software1

NVD•added 2026/04/26 10:17 p.m.•0 views

CVE-2026-7045

6.5CVSS0.00067EPSS

Exploits0References7

vulnersOsv•added 2026/04/26 3:10 p.m.•3 views

cc.allio.uno:uno-data-db (>=1.1.9 <=1.2.1), cc.allio.uno:uno-test (>=1.1.9 <=1.2.1) +184 more potentially affected by CVE-2026-7045 via com.baomidou:dynamic-datasource-spring-boot-common (>=4.0.0-B1 <=4.5.0)

com.baomidou:dynamic-datasource-spring-boot-common MAVEN version =4.0.0-B1, =1.1.9, =1.1.9, =2024.1.1.0, =2023.5.1.0, =2022.5.0.0, =2022.4.1.0, =1.0.0-JDK21, =1.0.0-JDK21, =4.0.0, =4.0.0, =4.5.0 - com.baomidou:dynamic-datasource-spring-boot4-starter =4.5.0 and more Source cves: CVE-2026-7045 Sour...

6.5CVSS6.5AI score0.00067EPSS

Exploits0

ATTACKERKB•added 2026/04/26 1:45 p.m.•1 views

CVE-2026-7045

6.5CVSS5.1AI score0.00067EPSS

Exploits0References8Affected Software1

Vulnrichment•added 2026/04/26 1:45 p.m.•3 views

CVE-2026-7045 baomidou dynamic-datasource StandardEvaluationContext/SpelExpressionParser DsSpelExpressionProcessor.java DsSpelExpressionProcessor#doDetermineDatasource injection

6.5CVSS6.1AI score0.00067EPSS

Exploits0References7

CVE•added 2026/04/26 1:45 p.m.•7 views

CVE-2026-7045

CVE-2026-7045 affects baomidou dynamic-datasource 2.5.0. The vulnerability targets DsSpelExpressionProcessor#doDetermineDatasource in dynamic-datasource-spring (StandardEvaluationContext/SpelExpressionParser). The issue arises from manipulated SpEL evaluation, enabling injection. Reported as expl...

6.5CVSS6.1AI score0.00067EPSS

Exploits0References7

EUVD•added 2026/04/26 1:45 p.m.•0 views

EUVD-2026-25722

6.5CVSS5.1AI score0.00067EPSS

Exploits0References7

Cvelist•added 2026/04/26 1:45 p.m.•27 views

CVE-2026-7045 baomidou dynamic-datasource StandardEvaluationContext/SpelExpressionParser DsSpelExpressionProcessor.java DsSpelExpressionProcessor#doDetermineDatasource injection

6.5CVSS0.00067EPSS

Exploits0References7

Positive Technologies•added 2026/04/26 12:0 a.m.•1 views

PT-2026-35227

6.5CVSS5.1AI score0.00067EPSS

Exploits0References7

CNNVD•added 2026/04/26 12:0 a.m.•6 views

dynamic-datasource-spring-boot-starter 注入漏洞

dynamic-datasource-spring-boot-starter is a fast integration multi-data-source starter developed by baomidou under the Open Source project. Version 2.5.0 of dynamic-datasource-spring-boot-starter contains an injection vulnerability. This vulnerability stems from improper handling of the...

6.5CVSS6.6AI score0.00067EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by