SQL injection vulnerability in Meshery
Critical severity
GitHub Reviewed
Published
Nov 24, 2023
to the GitHub Advisory Database
•
Updated Nov 28, 2023
Package
Affected versions
< 0.6.179
Patched versions
0.6.179
Description
Published by the National Vulnerability Database
Nov 24, 2023
Published to the GitHub Advisory Database
Nov 24, 2023
Reviewed
Nov 24, 2023
Last updated
Nov 28, 2023
A SQL injection vulnerability in Meshery before 0.6.179 allows a remote attacker to obtain sensitive information and execute arbitrary code via the order parameter.
References