Foreman SQL Injection Vulnerability
Foreman is a complete lifecycle management tool for physical and virtual servers. A SQL injection vulnerability exists in Foreman versions prior to 1.16.1. The vulnerability arises due to an input validation flaw in the id field in Foreman's dashboard controller. An attacker can exploit the...