SUSE CVE-2024-40120

seaweedfs v3.68 was discovered to contain a SQL injection vulnerability via the component /abstractsql/abstractsqlstore.go...

SQL Injection

Overview Affected versions of this package are vulnerable to SQL Injection via the abstractsqlstore.go component. An attacker can manipulate SQL queries and access or alter database information without proper authorization by injecting malicious SQL statements. Remediation Upgrade...