Description
Craft CMS up to v3.7.31 was discovered to contain a SQL injection vulnerability via the GraphQL API endpoint.
Remediation
References
Related Vulnerabilities
WordPress Plugin Custom Website Data Cross-Site Scripting (2.2)
WordPress Plugin Form Vibes-Database Manager for Forms SQL Injection (1.4.5)
WordPress Plugin Responsive Gallery Grid Cross-Site Scripting (2.3.8)
WordPress Plugin FV Flowplayer Video Player Cross-Site Scripting (6.0.3.3)
WordPress Plugin FreshMail For WordPress Multiple SQL Injection Vulnerabilities (1.5.8)