An issue was discovered in Tyto Sahi Pro through 7.x.x and 8.0.0. A parameter in the web reports module is vulnerable to h2 SQL injection. This can be exploited to inject SQL queries and run standard h2 system functions.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2019-06-17T13:31:57

Updated: 2024-08-05T12:05:16.171Z

Reserved: 2018-12-25T00:00:00

Link: CVE-2018-20469

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2019-06-17T14:15:10.327

Modified: 2024-11-21T04:01:33.067

Link: CVE-2018-20469

cve-icon Redhat

No data.