EPSS
Percentile
60.0%
github.com/flipped-aurora/gin-vue-admin is vulnerable to SQL injection. The vulnerability exists through the ‘order’ parameter given to the GetAPIInfoList function allows an attacker to inject and execute arbitrary SQL statements in the database.
GetAPIInfoList
github.com/flipped-aurora/gin-vue-admin/issues/813
github.com/flipped-aurora/gin-vue-admin/pull/811
github.com/flipped-aurora/gin-vue-admin/pull/811/commits/7677f2196ba388292d9ac434436589335fbb885f