2020-02-24 20:57:52
apache
PUBLISHED
Kylin has some restful apis which will concatenate SQLs with the user input string, a user is likely to be able to run malicious database queries.