Bug Bounty
CVE-2023-50718 in nocoDB SQL injection
pyozzi
2024. 5. 14. 01:33
https://github.com/nocodb/nocodb/security/advisories/GHSA-8fxg-mr34-jqr8
Improper Neutralization of Special Elements used in an SQL Command
### Summary --- An authenticated attacker with create access could conduct a SQL Injection attack on MySQL DB using unescaped table_name. ### Details --- ### SQL Injection vulnerability occu...
github.com
https://github.com/nocodb/nocodb
GitHub - nocodb/nocodb: 🔥 🔥 🔥 Open Source Airtable Alternative
🔥 🔥 🔥 Open Source Airtable Alternative. Contribute to nocodb/nocodb development by creating an account on GitHub.
github.com
추후 업데이트 예정