Описание
SQL injection vulnerability in Meshery
A SQL injection vulnerability in Meshery before 0.6.179 allows a remote attacker to obtain sensitive information and execute arbitrary code via the order parameter.
Пакеты
Наименование
github.com/layer5io/meshery
go
Затронутые версииВерсия исправления
< 0.6.179
0.6.179
Связанные уязвимости
CVSS3: 9.8
nvd
около 2 лет назад
A SQL injection vulnerability exists in Meshery prior to version v0.6.179, enabling a remote attacker to retrieve sensitive information and execute arbitrary code through the “order” parameter