Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SQL injection vulnerability in the getStringParameterSQL method in main/java/org/dashbuilder/dataprovider/sql/dialect/DefaultDialect.java in Dashbuilder before 0.6.0.Beta1 allows remote attackers to execute arbitrary SQL commands via a data set lookup filter in the (1) Data Set Authoring or (2) Displayer editor UI.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Red Hat Dashbuilder SQL注入漏洞
Vulnerability Description
Red Hat Dashbuilder是美国红帽(Red Hat)公司的一套开源的用于建立业务仪表板和报告的平台。该平台支持在线创建和编辑KPI(绩效指标)、集成jBPM的(业务流程管理)平台等。 Red Hat Dashbuilder 0.6.0.Beta1之前版本中的main/java/org/dashbuilder/dataprovider/sql/dialect/DefaultDialect.java文件中的getStringParameterSQL方法存在SQL注入漏洞。远程攻击者可利用该漏洞执
CVSS Information
N/A
Vulnerability Type
N/A