CVE-2019-10757

knex.js versions before 0.19.5 are vulnerable to SQL Injection attack. Identifiers are escaped incorrectly as part of the MSSQL dialect, allowing attackers to craft a malicious query to the host DB...

Xwiki XWiki Platform 安全漏洞

XWiki Platform is a set of wiki platforms for creating web collaboration applications from the French company XWiki Xwiki. XWiki Platform has a security vulnerability that stems from incorrect handling of escapes in the display of properties. No details of the vulnerability are currently availabl...