A vulnerability, which was classified as critical, has been found in y_project RuoYi 4.7.5. This issue affects some unknown processing of the file com/ruoyi/generator/controller/GenController. The manipulation leads to sql injection. The name of the patch is 167970e5c4da7bb46217f576dc50622b83f32b40. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-215975.
References
Link | Resource |
---|---|
https://gitee.com/y_project/RuoYi/commit/167970e5c4da7bb46217f576dc50622b83f32b40 | Permissions Required Third Party Advisory |
https://gitee.com/y_project/RuoYi/issues/I65V2B | Exploit Third Party Advisory |
https://github.com/luelueking/ruoyi-4.7.5-vuln-poc | Exploit Third Party Advisory |
https://vuldb.com/?id.215975 | Permissions Required Third Party Advisory |
https://gitee.com/y_project/RuoYi/commit/167970e5c4da7bb46217f576dc50622b83f32b40 | Permissions Required Third Party Advisory |
https://gitee.com/y_project/RuoYi/issues/I65V2B | Exploit Third Party Advisory |
https://github.com/luelueking/ruoyi-4.7.5-vuln-poc | Exploit Third Party Advisory |
https://vuldb.com/?id.215975 | Permissions Required Third Party Advisory |
Configurations
History
21 Nov 2024, 07:35
Type | Values Removed | Values Added |
---|---|---|
References | () https://gitee.com/y_project/RuoYi/commit/167970e5c4da7bb46217f576dc50622b83f32b40 - Permissions Required, Third Party Advisory | |
References | () https://gitee.com/y_project/RuoYi/issues/I65V2B - Exploit, Third Party Advisory | |
References | () https://github.com/luelueking/ruoyi-4.7.5-vuln-poc - Exploit, Third Party Advisory | |
References | () https://vuldb.com/?id.215975 - Permissions Required, Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.5 |
07 Mar 2023, 22:36
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:ruoyi:ruoyi:4.7.5:*:*:*:*:*:*:* |
22 Dec 2022, 17:47
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://gitee.com/y_project/RuoYi/commit/167970e5c4da7bb46217f576dc50622b83f32b40 - Permissions Required, Third Party Advisory | |
References | (MISC) https://vuldb.com/?id.215975 - Permissions Required, Third Party Advisory | |
References | (MISC) https://github.com/luelueking/ruoyi-4.7.5-vuln-poc - Exploit, Third Party Advisory | |
References | (MISC) https://gitee.com/y_project/RuoYi/issues/I65V2B - Exploit, Third Party Advisory | |
CWE | CWE-74 |
|
CPE | cpe:2.3:a:ruoyi_project:ruoyi:4.7.5:*:*:*:*:*:*:* | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
16 Dec 2022, 19:37
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2022-12-16 19:15
Updated : 2024-11-21 07:35
NVD link : CVE-2022-4566
Mitre link : CVE-2022-4566
CVE.ORG link : CVE-2022-4566
JSON object : View
Products Affected
ruoyi
- ruoyi