3 matches found
CVE-2025-9410
A weakness has been identified in lostvip-com ruoyi-go up to 2.1. The affected element is the function SelectListByPage of the file modules/system/dao/GenTableDao.go. Executing manipulation of the argument isAsc/orderByColumn can lead to sql injection. It is possible to launch the attack remotely...
SQL Injection
Overview Affected versions of this package are vulnerable to SQL Injection via the SelectListByPage function in the GenTableDao.go file. An attacker can access or modify sensitive data, or disrupt application functionality by manipulating the isAsc or orderByColumn arguments in crafted requests...
CVE-2025-9410 lostvip-com ruoyi-go GenTableDao.go SelectListByPage sql injection
A weakness has been identified in lostvip-com ruoyi-go up to 2.1. The affected element is the function SelectListByPage of the file modules/system/dao/GenTableDao.go. Executing manipulation of the argument isAsc/orderByColumn can lead to sql injection. It is possible to launch the attack remotely...