CVE-2022-38542
Archery exposes a SQL injection vulnerability in versions 1.4.0 through 1.8.5 via the ThreadIDs parameter in the kill_session interface. The issue, confirmed by multiple sources, is mitigated by upgrading to version 1.9.0 or newer. A temporary workaround suggested by PT-Security is to restrict ac...