Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
KBase Metrics methods_upload_user_stats.py upload_user_data sql injection
Vulnerability Description
A vulnerability was found in KBase Metrics. It has been classified as critical. This affects the function upload_user_data of the file source/daily_cron_jobs/methods_upload_user_stats.py. The manipulation leads to sql injection. The patch is named 959dfb6b05991e30b0fa972a1ecdcaae8e1dae6d. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-217059.
CVSS Information
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
SQL命令中使用的特殊元素转义处理不恰当(SQL注入)
Vulnerability Title
KBase Metrics SQL注入漏洞
Vulnerability Description
KBase Metrics是用于收集指标和生成报告和摘要的脚本和其他工具。 KBase Metrics存在SQL注入漏洞,该漏洞源于文件source/daily_cron_jobs/methods_upload_user_stats.py的函数upload_user_data存在问题,会导致sql注入。
CVSS Information
N/A
Vulnerability Type
N/A