CVE-2024-40540
- Reference to the description:
- Description:
- my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /api/dept.
- Last updated date:
- 08/01/2024
- Type:
- exploit
- Confidence:
- HIGH
- Date of publishing:
- 07/12/2024
- Reference url to background
https://gitee.com/witmy/my-springsecurity-plus/issues/IAAGZY