VDB

GCVE-VVD-MAGEIA-2023-95

GCVE-VVD-MAGEIA-2023-95
Advisory Published
Vulnetix · Advisory published October 19, 2023
The program plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement. (CVE-2022-24407)
Download JSON Open in Console

Affected Products

VendorProductVersionsPlatforms
Mageiamgaonline0 (affected), 3.33-1.mga8 (unaffected)
Mageiamgaonline0 (affected), 3.33-1.mga9 (unaffected)
Mageiamysql-connector-c++0 (affected), ++-8.0.32-1.mga8 (unaffected), 0 (affected), ++-8.0.32-1.mga8 (unaffected)

References

Updated mysql-connector-c++ packages fix security vulnerability
advisory
Updated mysql-connector-c++ packages fix security vulnerability
issue
Updated mysql-connector-c++ packages fix security vulnerability
issue
Updated mgaonline package fixes lacking update notifications
advisory
Updated mgaonline package fixes lacking update notifications
issue

Browse GCVE Records

100 records in the GCVE database · Updated April 16, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

Open in Console Download JSON
$ Console Community · 100/wk Open console ›