CVE-2022-45135: Apache Cocoon: SQL injection in DatabaseCookieAuthenticatorAction

Cédric Damioli Wed, 29 Nov 2023 15:02:36 -0800

Severity: moderate

Affected versions:


- Apache Cocoon 2.2.0 before 2.3.0

Description:

Improper Neutralization of Special Elements used in an SQL Command ('SQL 
Injection') vulnerability in Apache Cocoon.This issue affects Apache Cocoon: 
from 2.2.0 before 2.3.0.

Users are recommended to upgrade to version 2.3.0, which fixes the issue.

Credit:

QSec-Team (finder)

References:

https://cocoon.apache.org/
https://www.cve.org/CVERecord?id=CVE-2022-45135


---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@cocoon.apache.org
For additional commands, e-mail: users-h...@cocoon.apache.org

CVE-2022-45135: Apache Cocoon: SQL injection in DatabaseCookieAuthenticatorAction

Reply via email to