Vulnerability CVE-2023-51805


Published: 2024-01-13

Description:
SQL Injection vulnerability in TDuckCLoud tduck-platform v.4.0 allows a remote attacker to obtain sensitive information via the getFormKey parameter in the search function of FormDataMysqlService.java file.

 References:
https://github.com/TDuckCloud/tduck-platform/issues/22

Copyright 2026, cxsecurity.com

 

Back to Top