Critical severity9.8NVD Advisory· Published Apr 20, 2018· Updated Jun 17, 2026
CVE-2018-1290
CVE-2018-1290
Description
In Apache Fineract versions 1.0.0, 0.6.0-incubating, 0.5.0-incubating, 0.4.0-incubating, Using a single quotation escape with two continuous SQL parameters can cause a SQL injection. This could be done in Methods like retrieveAuditEntries of AuditsApiResource Class and retrieveCommands of MakercheckersApiResource Class.
Affected products
2Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.