Home
HIGH: 7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HDefault status
unknown
prior to version 3.4.17
affected
Default status
unknown
prior to version 2.2.0
affected
Default status
unknown
prior to version 2.2.0
affected
Default status
unknown
prior to version 2.2.0
affected
Default status
unknown
prior to version 2.2.0
affected
Default status
unknown
prior to version 9.2.3
affected
Default status
unknown
prior to version 3.4.17.1
affected
Default status
unknown
prior to version 3.4.17
affected
Description
Successful exploitation of the SQL injection vulnerability could allow a remote authenticated attacker to execute arbitrary commands via a specific interface, potentially enabling the attacker to access, modify, or delete sensitive information within the database.
Product status
prior to version 3.4.17
prior to version 2.2.0
prior to version 2.2.0
prior to version 2.2.0
prior to version 2.2.0
prior to version 9.2.3
prior to version 3.4.17.1
prior to version 3.4.17
Credits
Hoa Ly Van Huu
References
www.csa.gov.sg/alerts-and-advisories/alerts/al-2026-050/