2 matches found
CVE-2026-28438
CVE-2026-28438 affects CocoIndex: Doris target connector before 0.3.34 did not validate the configured table name when constructing ALTER TABLE statements, enabling SQL injection if a table name from an untrusted upstream is used during schema changes. The issue has been patched in version 0.3.34...
Code Execution Vulnerability in EmpireCMS
EmpireCMS is a free content management system CMS. EmpireCMS 7.5 and previous versions have a code execution vulnerability, the vulnerability stems from the database table name is not verified when backing up the database in the background, an attacker can modify the database table name, exploit...