CVE-2019-15570
CVE-2019-15570 describes a SQL injection in BEdita up to version 4.0.0-RC2 during a save operation for a relation with parameters. The linked advisories (GHSA-9GV2-2M38-J6CX and OSV/GHSA entries) indicate the root cause relates to insufficient handling/escaping of JSON data, enabling an attacker ...