Lucene search
Veracode Vulnerability DatabaseVERACODE:35059HistoryApr 12, 2022 - 6:24 a.m.
SQL Injection
2022-04-1206:24:50
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
13
0.002 Low
EPSS
Percentile
54.7%
com.yahoo.elide:elide-datastore-aggregation is vulnerable to SQL Injection attacks. A specifically crafted query statement through a parameterized TEXT column allows a malicious user to inject and execute arbitrary SQL queries via the ValueType enum.
| CPE | Name | Operator | Version |
|---|---|---|---|
| elide data store: aggregation data store | eq | 6.1.3 | |
| elide data store: aggregation data store | eq | 6.1.3 |
Related
prion
prion
Authorization
2022-04-11 21:15:00
nvd
nvd
CVE-2022-24827
2022-04-11 21:15:08
osv
osv
SQL Injection in elide-datastore-aggregation
2022-04-08 22:43:17
CVE-2022-24827
2022-04-11 21:15:08
github
github
SQL Injection in elide-datastore-aggregation
2022-04-08 22:43:17
cnvd
cnvd
Elide SQL Injection Vulnerability
2022-04-12 00:00:00
cve
cve
CVE-2022-24827
2022-04-11 21:15:08
cvelist
cvelist
CVE-2022-24827 SQL Injection in elide-datastore-aggregation
2022-04-11 20:13:40