2 matches found
CVE-2022-38488
logrocket-oauth2-example through 2020-05-27 allows SQL injection via the /auth/register username parameter...
CVE-2022-38488
CVE-2022-38488 affects logrocket-oauth2-example (pre-2020-05-27). The underlying issue is SQL injection in the /auth/register endpoint where the username parameter is inserted into a SQL query without proper sanitization. This leads to potential disclosure, modification, or destruction of data (p...