Security News > 2024 > June > Critical SQLi Vulnerability Found in Fortra FileCatalyst Workflow Application
![Critical SQLi Vulnerability Found in Fortra FileCatalyst Workflow Application](/static/build/img/news/critical-sqli-vulnerability-found-in-fortra-filecatalyst-workflow-application-medium.jpg)
2024-06-27 06:45
A critical security flaw has been disclosed in Fortra FileCatalyst Workflow that, if left unpatched, could allow an attacker to tamper with the application database. Tracked as CVE-2024-5276, the vulnerability carries a CVSS score of 9.8. It impacts FileCatalyst Workflow versions 5.1.6 Build 135 and earlier. It has been addressed in version 5.1.6 build 139. "An SQL injection vulnerability in
News URL
https://thehackernews.com/2024/06/critical-sqli-vulnerability-found-in.html
Related news
- Critical Git vulnerability allows RCE when cloning repositories with submodules (CVE-2024-32002) (source)
- Microsoft Issues Patches for 51 Flaws, Including Critical MSMQ Vulnerability (source)
- VMware fixes critical vCenter RCE vulnerability, patch now (source)
- Critical RCE Vulnerability Discovered in Ollama AI Infrastructure Tool (source)
- Exploit for critical Fortra FileCatalyst Workflow SQLi flaw released (source)
- PoC exploit for critical Fortra FileCatalyst flaw published (CVE-2024-5276) (source)
- GitLab Releases Patch for Critical CI/CD Pipeline Vulnerability and 13 Others (source)