EPSS
Percentile
51.6%
contao/core is vulnerable to SQL Injection attacks. The library does not properly sanitize the search filter in the backend, allowing a malicious user to inject and execute arbitrary SQL commands.
contao.org/en/news/contao-4_4_8.html