Description

Supabase PostgreSQL v15.1 was discovered to contain a SQL injection vulnerability via the component /pg_meta/default/query.

Remediation

References

CVE-2024-24213

Related Vulnerabilities

Rukovoditel Unrestricted Upload of File with Dangerous Type Vulnerability (CVE-2018-20166)

Oracle Database Server CVE-2007-2109 Vulnerability (CVE-2007-2109)

TYPO3 Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2020-11069)

WordPress Plugin Custom Login Page Customizer-LoginPress Unspecified Vulnerability (1.1.15)

Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2022-26596)

Severity

Critical

Classification

CVE-2024-24213 CWE-138 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities