org.apache.inlong:manager-service is vulnerable to SQL Injection attacks. A specifically crafted attack statement through the orderType
parameter in InlongGroupServiceImpl.java
allows a malicious user to inject and execute arbitrary SQL queries on the target system.
CPE | Name | Operator | Version |
---|---|---|---|
apache inlong - manager service | le | 1.5.0 | |
apache inlong - manager service | le | 1.5.0 |