3 matches found
CVE-2025-15439
The CVE-2025-15439 entry concerns Daptin 0.10.3 where the goqu.L call in server/resource/resource_aggregate.go (Aggregate API) is vulnerable to SQL injection via manipulated arguments column/group/order. The issue is exploitable remotely and publicly demonstrated; multiple sources (NVD, Red Hat, ...
CVE-2025-15439 Daptin Aggregate API resource_aggregate.go goqu.L sql injection
A vulnerability was identified in Daptin 0.10.3. Affected by this vulnerability is the function goqu.L of the file server/resource/resourceaggregate.go of the component Aggregate API. The manipulation of the argument column/group/order leads to sql injection. The attack may be initiated remotely...
CVE-2025-15439 Daptin Aggregate API resource_aggregate.go goqu.L sql injection
A vulnerability was identified in Daptin 0.10.3. Affected by this vulnerability is the function goqu.L of the file server/resource/resourceaggregate.go of the component Aggregate API. The manipulation of the argument column/group/order leads to sql injection. The attack may be initiated remotely...