Description
An issue was discovered in ZrLog 2.0.3. There is a SQL injection vulnerability in the article management search box via the keywords parameter.
Remediation
References
https://github.com/94fzb/zrlog/issues/37
Related Vulnerabilities
CVE-2020-28499 Vulnerability in maven package org.webjars.npm:merge
CVE-2018-16479 Vulnerability in npm package http-live-simulator
CVE-2022-36097 Vulnerability in maven package org.xwiki.platform:xwiki-platform-attachment-ui
CVE-2020-11023 Vulnerability in maven package org.webjars:jquery
CVE-2020-13942 Vulnerability in maven package org.apache.unomi:unomi-kar