Vulnerability Database

Published: Jan 31, 2023
Updated: May 16, 2024
CVE: <a href="https://nvd.nist.gov/vuln/detail/CVE-2023-24163" target="_blank" rel="noopener"> CVE-2023-24163
GHSA: <a href="https://github.com/advisories/GHSA-6c25-cxcc-pmc4" target="_blank" rel="noopener"> GHSA-6c25-cxcc-pmc4
Severity: Critical
Exploit:

296,760

Total vulnerabilities in the database

SQL Inection vulnerability in Dromara hutool before 5.8.21 allows attacker to execute arbitrary code via the aviator template engine.

CVSS v3:

CWEs:

OWASP TOP 10:

Software	From	Fixed in
cn.hutool / hutool-all	-	5.8.11.x
hutool / hutool	-	5.8.21

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.