2 matches found
CVE-2025-50983
SQL Injection vulnerability exists in the sortKey parameter of the GET /api/v1/wanted/cutoff API endpoint in readarr 0.4.15.2787. The endpoint fails to properly sanitize user-supplied input, allowing attackers to inject and execute arbitrary SQL commands against the backend SQLite database. Sqlma...
readarr 安全漏洞
Readarr is an open source eBook library management system from Readarr. A security vulnerability exists in readarr version 0.4.15.2787, which stems from improper cleanup of the sortKey parameter in the GET /api/v1/wanted/cutoff API endpoint, which could lead to an SQL injection attack...