CVE-2022-23857
EPSS 0.29%SQL injection in github.com/navidrome/navidrome
發布日:2022/1/27修改日:2026/3/3
描述
SQL injection in github.com/navidrome/navidrome
受影響套件(2)
- Go/github.com/navidrome/navidromefrom 0, < 0.47.5
- Go/github.com/navidrome/navidromefrom 0, < 0.47.5
參考連結(5)
- ADVISORYhttps://github.com/advisories/GHSA-pmcr-2rhp-36hr
- ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2022-23857
- PATCHhttps://github.com/navidrome/navidrome
- WEBhttps://github.com/navidrome/navidrome/commit/9e79b5cbf2a48c1e4344df00fea4ed3844ea965d
- WEBhttps://github.com/navidrome/navidrome/releases/tag/v0.47.5