CVE-2023-30867 | Apache StreamPark up to 2.1.1 Name-based Fuzzy Search sql injection

Posted by Angelo Barbosa | Dec 15, 2023 | CVE

A vulnerability classified as critical has been found in Apache StreamPark up to 2.1.1. This affects an unknown part of the component Name-based Fuzzy Search. The manipulation leads to sql injection.

This vulnerability is uniquely identified as CVE-2023-30867. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.

It is recommended to upgrade the affected component.

CVE-2023-30867 | Apache StreamPark up to 2.1.1 Name-based Fuzzy Search sql injection

Related Posts

CVE-2023-49192 | Enhanced Text Widget Plugin up to 1.6.2 on WordPress etw_hide_admin_notification_callback authorization

CVE-2024-2861 | collizo4sky ProfilePress Plugin up to 4.15.8 on WordPress cross site scripting

CVE-2024-37054 | MLflow 0.9.0 deserialization

CVE-2024-7300 | Bolt CMS 3.7.1 Showcase Creation showcases textarea cross site scripting