CVE-2022-38541

Archery v1.8.3 to v1.8.5 was discovered to contain multiple SQL injection vulnerabilities via the starttime and stoptime parameters in the my2sql interface...

CVE-2022-38537

Archery v1.4.5 to v1.8.5 was discovered to contain multiple SQL injection vulnerabilities via the startfile, endfile, starttime, and stoptime parameters in the binlog2sql interface...

PT-2022-24443 · Archery · Archery

Name of the Vulnerable Software and Affected Versions: Archery versions 1.4.5 through 1.8.5 Description: The issue concerns multiple SQL injection vulnerabilities. These vulnerabilities exist via the start file, end file, start time, and stop time parameters in the binlog2sql interface...

PT-2022-24447 · Archery · Archery

Name of the Vulnerable Software and Affected Versions: Archery versions 1.8.3 through 1.8.5 Description: The issue is related to multiple SQL injection vulnerabilities. These vulnerabilities can be exploited via the start time and stop time parameters in the my2sql interface. Recommendations: For...

Archery SQL注入漏洞

Archery is a set of open source vulnerability assessment and management tools. A security vulnerability exists in Archery versions v1.8.3 through v1.8.5, which stems from the starttime and stoptime parameters in the my2sql interface containing SQL injection vulnerabilities...