Back to directory
WRITEUP #3355

Improper Spring @Query Usage Allows N1QL Injection

SQL InjectionN1QL injectionNoSQL injection
byPavel Nakonechnyi
Program
-
Published
Sep 30, 2021
Added to HackDex
Sep 15, 2022
Read Full Writeuphttps://www.gremwell.com/spring-n1ql-injection
RELATED WRITEUPS
Directory Traversal, SQL Injection and Server-Side Request Forgery
SQL InjectionPath traversal
Breaking Down Barriers: Exploiting Pre-Auth SQL Injection In WhatsUp Gold - CVE-2024-6670
SQL InjectionReverse engineering
Bypassing airport security via SQL injection
SQL Injection
World of SELECT-only PostgreSQL Injections: (Ab)using the filesystem
SQL Injection
Exploiting authorization by nonce in WordPress plugins
RCEArbitrary file upload

Built with ❤️ by Shubham Rawat