Description
SQL injection vulnerability in the Search::setJsonAlert method in OSClass before 3.4.3 allows remote attackers to execute arbitrary SQL commands via the alert parameter in a search alert subscription action.
Remediation
References
Related Vulnerabilities
RubyGems Improper Input Validation Vulnerability (CVE-2018-1000077)
WordPress Plugin Woocommerce-Recent Purchases Local File Inclusion (1.0.1)
SharePoint CVE-2023-36762 Vulnerability (CVE-2023-36762)
WordPress Plugin WP Session Manager SQL Injection (1.2.1)
WordPress Plugin SecuPress Free-WordPress Security Security Bypass (1.4.13)