In davinci 0.3.0-rc after logging in, the user can connect to the mysql malicious server by controlling the data source to read arbitrary files on the client...
6.5CVSS
6.5AI Score
0.001EPSS
8.8CVSS
8.6AI Score
0.001EPSS
Davinci v0.3.0-rc was discovered to contain a SQL injection vulnerability via the copyDisplay...
9.8CVSS
9.8AI Score
0.001EPSS