Security Advisory

CVE-2023-50718

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2024-05-13 16:08:09

Last updated 2024-08-21 20:46:16

Assigner GitHub_M

State PUBLISHED

Description

NocoDB is software for building databases as spreadsheets. Prior to version 0.202.10, an authenticated attacker with create access could conduct a SQL Injection attack on MySQL DB using unescaped `table_name`. This vulnerability may result in leakage of sensitive data in the database. Version 0.202.10 contains a patch for the issue.

← Browse all CVEs View on cve.org ↗