CVE-2026-48114P2CRITICALCVSS 9.8v>= 2.0.0, < 3.0.02026-06-15
CVE-2026-48114 [CRITICAL] CWE-89 CVE-2026-48114: Metacat is data repository software that helps researchers preserve, share, and discover data. Versi
Metacat is data repository software that helps researchers preserve, share, and discover data. Versions 2.0.0 and and above contain an unauthenticated SQL injection in the /harvesterRegistration endpoint. HarvesterRegistration.dbInsert() builds an INSERT against HARVEST_SITE_SCHEDULE via string concatenation, using a quoteString() helper that perfo
nvd