DTStack Taier 1.4.0 allows remote attackers to specify the jobName parameter in the console listNames function to cause a SQL injection vulnerability
https://github.com/DTStack/Taier/issues/1184
https://gist.github.com/nerowander/380707503cfb078cbd6bed9fc9b12ad9