QwikSec

Security Database

CVE

CWE

Training

CVE-2023-25196

Published: Mar 28, 2023

Modified: Oct 23, 2024

PUBLISHED

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Apache Software Foundation Apache Fineract. Authorized users may be able to change or add data in certain components. This issue affects Apache Fineract: from 1.4 through 1.8.2.

Vendor	Product	Versions
Apache Software Foundation	Apache Fineract	affected `1.4 - <= 1.8.2`

Weaknesses (CWE)

References

https://lists.apache.org/thread/m9x3vpn3bry4fympkzxnnz4qx0oc0w8m

vendor-advisory

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.