CVE-2023-26093

Liima before 1.17.28 allows Hibernate query language HQL injection, related to colToSort in the deployment filter...

CVE-2023-26092

Liima before 1.17.28 allows server-side template injection...

Liima 安全漏洞

Liima is a Liima open source application. Allows you to manage the configuration of Java EE applications in an unlimited number of different environments in various versions, including automated deployment of these applications. A security vulnerability exists in versions prior to Liima 1.17.28...

CVE-2023-26093

CVE-2023-26093 affects Liima prior to version 1.17.28. The root cause is a Hibernate Query Language (HQL) injection in the deployment filter’s colToSort logic, potentially enabling authenticated or network-based attackers to achieve high-impact outcomes. The provided documents confirm the vulnera...

CVE-2023-26092

Liima before 1.17.28 allows server-side template injection...

Liima SQL注入漏洞

Liima is a Liima open source application. Allows you to manage the configuration of Java EE applications in a variety of versions of an unlimited number of different environments , including the automatic deployment of these applications . Liima 1.17.28 before the version of a security...