Closed akhaneev closed 10 months ago
Hi @mathiasrw, Can you make this issue hidden to prevent it from being exploited?
I cant hide the issue, but only maintainers and you can see the original payload now.
Problem replicated. Fix implemented. One test is failing for reasons that are not clear at the moment.
Fixed as part of v4.1.11, v3.1.1, v2.5.4 and v1.7.5.
v0.x has not been updated.
The following query causes script execution: RESTRICTED I guess the problem is with the quote escaping in the query. Also, this issue causes some queries with special characters to fail.