修复v3.8.0 存在绕过sql黑名单限制sql注入漏洞 #8335

修复minidao `getQueryTableInfo`无法解析带括号的表名、增加数据库名解析能力
2026-01-03 03:45:28 +08:00 · 2025-05-27 18:40:34 +08:00
parent 4042579167
commit ddf0f61ae5
3 changed files with 71 additions and 3 deletions
--- a/jeecg-boot/pom.xml
+++ b/jeecg-boot/pom.xml
@ -57,7 +57,7 @@

 		<!-- 积木报表-->
 		<jimureport-spring-boot-starter.version>1.9.5.1</jimureport-spring-boot-starter.version>
-		<minidao.version>1.10.7</minidao.version>
+		<minidao.version>1.10.10</minidao.version>
 		<!-- 持久层 -->
 		<mybatis-plus.version>3.5.3.2</mybatis-plus.version>
 		<dynamic-datasource-spring-boot-starter.version>4.1.3</dynamic-datasource-spring-boot-starter.version>