DataEase is an open source data visualization analysis tool. Prior to version 1.18.9, DataEase has a SQL injection vulnerability that can bypass blacklists. The vulnerability has been fixed in v1.18.9. There are no known workarounds.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: GitHub_M
Published: 2023-07-25T19:36:14.962Z
Updated: 2023-07-25T19:36:14.962Z
Reserved: 2023-06-29T19:35:26.436Z
Link: CVE-2023-37258
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-07-25T20:15:13.560
Modified: 2023-08-01T20:20:01.997
Link: CVE-2023-37258
JSON object: View
Redhat Information
No data.
CWE