CVE-2022-25517 is a vulnerability in Baomidou Mybatis Plus
Published on March 22, 2022

MyBatis plus v3.4.3 was discovered to contain a SQL injection vulnerability via the Column parameter in /core/conditions/AbstractWrapper.java. NOTE: the vendor's position is that the reported execution of a SQL statement was intended behavior.

NVD

Products Associated with CVE-2022-25517

Want to know whenever a new CVE is published for Baomidou Mybatis Plus? stack.watch will email you.

Baomidou Mybatis Plus

Exploit Probability

EPSS

0.36%

Percentile

58.22%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

CVE-2022-25517 is a vulnerability in Baomidou Mybatis PlusPublished on March 22, 2022

Products Associated with CVE-2022-25517

Exploit Probability

CVE-2022-25517 is a vulnerability in Baomidou Mybatis Plus
Published on March 22, 2022