marginalia is vulnerable to sql injections. The vulnerability exists in an unknown functionality of User Controller in marginalia. An attacker might be able to inject an SQL to a vulnerable vector (header, http parameter, etc) or change existing SQL statements which would modify the database.
CPE | Name | Operator | Version |
---|---|---|---|
marginalia | le | 1.5.0 |