← Back to CVE List

CVE-2021-31818

Published: 2021-06-17T14:15Z
Last Modified: 2024-11-21T06:06Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
Affected versions of Octopus Server are prone to an authenticated SQL injection vulnerability in the Events REST API because user supplied data in the API request isn’t parameterised correctly. Exploiting this vulnerability could allow unauthorised access to database tables. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt