2 matches found
Documize Security Breach
Documize is an open source document collaboration system built on Golang and EmberJS. A security vulnerability exists in Documize version 5.4.2, which stems from an SQL injection vulnerability. The vulnerability allows remote attackers to execute arbitrary code via user parameters in the...
PT-2023-19094 · Documize · Documize
Name of the Vulnerable Software and Affected Versions: Documize version 5.4.2 Description: The issue allows remote attackers to execute arbitrary code via the user parameter of the "/api/dashboard/activity" endpoint. This enables attackers to potentially gain unauthorized access and control over...