This page collects WhisperX intelligence signals tagged #SQL_injection. It is designed for humans, search engines, and AI agents: each item links to a canonical source-backed record with sector, source, timestamp, credibility, and exportable structured data.
Eksagate Electronic Engineering and Computer Industry Trade Inc.의 'Webpack Management System'에서 심각한 SQL 인젝션 취약점(CVE-2025-10437)이 공개적으로 식별됐다. 이 취약점은 CVSS 9.8의 위험 등급을 부여받았으며, 공격자가 네트워크를 통해 인증 없이 시스템에 접근해 데이터의 기밀성, 무결성, 가용성을 모두 높은 수준으로 침해할 수 있는 위험을 내포하고 있다. 2025년 11월 19일 이하 버전의 소프트웨어가 영향을 받는 것으로 확인됐다. 취약점의 기술적 원인은 'SQL 명...
A critical security vulnerability has been flagged in the `app.py` source code, where a password is hardcoded directly into the application logic. This high-severity issue, classified under CWE-798 (Use of Hard-Coded Credentials), creates a direct path for credential exposure if the code is leaked or accessed by unauth...
An automated security scan of the GitRev codebase has flagged one critical and five warning-level vulnerabilities, with two immediate fixes targeting the core authentication module. The scan, requiring mandatory human review, identified a critical missing input validation flaw in the `core/passport.js` file. This vulne...
The YUDDHA platform's autonomous security agent, KAVACH, has autonomously identified and patched a critical SQL injection vulnerability. The flaw was located in the `/rest/products/search?q=` endpoint of a target application, exposing a direct path for data exfiltration or system compromise. Verified by the Mistral mod...
The YUDDHA platform's autonomous security agent, KAVACH, has automatically identified and patched a critical SQL injection vulnerability in a live application. The flaw, classified as OWASP A03:2021 - Injection, was located in the `/rest/user/login` endpoint of a target service running on `juiceshop:3000`. The vulnerab...
A high-severity security vulnerability has been automatically flagged within the Apache Superset GitHub repository. The static application security testing (SAST) scanner, Semgrep, detected a possible formatted SQL query in the file `sql_injection.py` at line 30. This pattern, classified under CWE-89 (SQL Injection), r...