Unrated severityNVD Advisory· Published Oct 13, 2022· Updated Apr 23, 2025

Ree6 vulnerable to SQL Injection

CVE-2022-39303

Description

Ree6 is a moderation bot. This vulnerability allows manipulation of SQL queries. This issue has been patched in version 1.7.0 by using Javas PreparedStatements, which allow object setting without the risk of SQL injection. There are currently no known workarounds.

Affected products

Ree6 Applications/Ree6v5
Range: <= 1.6.4

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

github.com/Ree6-Applications/Ree6/compare/1.6.4...1.7.mitre
github.com/Ree6-Applications/Ree6/security/advisories/GHSA-69xv-xjfw-4pv8mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000