qiwen-file v1.4.0 was discovered to contain a SQL injection vulnerability via the component /mapper/NoticeMapper.xml.Referenceshttp://qiwen-file.comhttps://www.qiwenshare.com/https://gist.github.com/3xsh0re/4253401806bc35b2f95dcea12a4310fc