Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

GHSA-fpcf-qr79-hjqp

GitHub Security Advisory

SQL Injection in Apache InLong

✓ GitHub Reviewed HIGH Has CVE
View on GitHub

Advisory Details

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Apache InLong. This issue affects Apache InLong: from 1.4.0 through 1.8.0, the attacker can create misleading or false records, making it harder to audit
and trace malicious activities. Users are advised to upgrade to Apache InLong's 1.8.0 or cherry-pick [1] to solve it.

[1] https://github.com/apache/inlong/pull/8628

Affected Packages

Maven org.apache.inlong:inlong
Affected versions: 1.4.0 (fixed in 1.8.0)

Related CVEs

CVE-2023-43667

Key Information

GHSA ID
GHSA-fpcf-qr79-hjqp
Published
October 16, 2023 9:30 AM
Last Modified
September 27, 2024 7:23 PM
CVSS Score
7.5 /10
Primary Ecosystem
Maven
Primary Package
org.apache.inlong:inlong
GitHub Reviewed
✓ Yes

Dataset

Last updated: July 27, 2025 6:35 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.