CVE-2021-30055

A SQL injection vulnerability in Knowage Suite version 7.1 exists in the documentexecution/url analytics driver component via the 'par_year' parameter when running a report.
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:eng:knowage:*:*:*:*:*:*:*:*

Information

Published : 2021-04-05 04:15

Updated : 2021-04-08 12:28


NVD link : CVE-2021-30055

Mitre link : CVE-2021-30055


JSON object : View

CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Advertisement

dedicated server usa

Products Affected

eng

  • knowage