CVE-2014-4736

2014-07-24T10:55:08
ID CVE-2014-4736
Type cve
Reporter NVD
Modified 2018-10-09T15:49:51

Description

SQL injection vulnerability in E2 before 2.4 (2845) allows remote attackers to execute arbitrary SQL commands via the note-id parameter to @actions/comment-process.