SQL injection vulnerability in Badger Meter Monitool...
Critical severity
Unreviewed
Published
Mar 12, 2024
to the GitHub Advisory Database
•
Updated Mar 12, 2024
Description
Published by the National Vulnerability Database
Mar 12, 2024
Published to the GitHub Advisory Database
Mar 12, 2024
Last updated
Mar 12, 2024
SQL injection vulnerability in Badger Meter Monitool affecting versions 4.6.3 and earlier. A remote attacker could send a specially crafted SQL query to the server via the j_username parameter and retrieve the information stored in the database.
References