Vulnerabilities (CVE)

Filtered by vendor Codermy Subscribe
Filtered by product My-springsecurity-plus
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2024-40542 1 Codermy 1 My-springsecurity-plus 2024-08-01 N/A 9.8 CRITICAL
my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /api/role?offset.
CVE-2024-40541 1 Codermy 1 My-springsecurity-plus 2024-08-01 N/A 9.8 CRITICAL
my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /api/dept/build.
CVE-2024-40540 1 Codermy 1 My-springsecurity-plus 2024-08-01 N/A 9.8 CRITICAL
my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /api/dept.
CVE-2024-40539 1 Codermy 1 My-springsecurity-plus 2024-08-01 N/A 9.8 CRITICAL
my-springsecurity-plus before v2024.07.03 was discovered to contain a SQL injection vulnerability via the dataScope parameter at /api/user.