GHSA-fgqx-9q7r-qrvhHigh

SOPlanning is vulnerable to SQL Injection across multiple endpoints and parameters. Attacker with...

Published
June 1, 2026
Last Modified
June 1, 2026

🔗 CVE IDs covered (1)

📋 Description

SOPlanning is vulnerable to SQL Injection across multiple endpoints and parameters. Attacker with low privileges can inject arbitrary SQL commands, potentially gaining full control over the database.

This issue affects SOPlanning version 1.55 and below.

🔗 References (4)