CVE-2022-0944

Summary

Template injection in connection test endpoint leads to RCE in GitHub repository sqlpad/sqlpad prior to 6.10.1.

Affected Software

VendorProductVersion RangeStatus
sqlpadsqlpad/sqlpadunspecified < 6.10.1affected

Weaknesses

  • CWE-1336: CWE-1336 Improper Neutralization of Special Elements Used in a Template Engine

ADP Enrichment

CVE Program Container

Additional References

References