{ads}

Critical SQL Injection Flaws Expose Gentoo Soko to Remote Code Execution



June 28, 2023 at 12:54PM

Multiple SQL injection vulnerabilities have been disclosed in Gentoo Soko that could lead to remote code execution (RCE) on vulnerable systems. "These SQL injections happened despite the use of an Object-Relational Mapping (ORM) library and prepared statements," SonarSource researcher Thomas Chauchefoin said, adding they could result in RCE on Soko because of a "misconfiguration of the database.

from The Hacker News https://ift.tt/KE7aXWm

Related

Related Posts

0 Response to "Critical SQL Injection Flaws Expose Gentoo Soko to Remote Code Execution"

Post a Comment

Article Top Ads

Central Ads Article 1

Middle Ads Article 2

Article Bottom Ads