CVE-2024-23539
published 2024-03-29CVE-2024-23539: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Apache Fineract.This issue affects Apache Fineract…
critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Apache Fineract.This issue affects Apache Fineract: <1.8.5.
Users are recommended to upgrade to version 1.8.5 or 1.9.0, which fix the issue.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apache | fineract | < 1.9.0 | 1.9.0 |
| apache_software_foundation | apache_fineract | <= 1.8.4 | — |