Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
In Apache DolphinScheduler before 1.3.6 versions, authorized users can use SQL injection in the data source center. (Only applicable to MySQL data source with internal login account password)