Vulnerabilities > Apache > Fineract > 1.8.4

DATE CVE VULNERABILITY TITLE RISK
2025-02-12 CVE-2024-32838 Unspecified vulnerability in Apache Fineract
SQL Injection vulnerability in various API endpoints - offices, dashboards, etc.
network
low complexity
apache
8.8
2024-03-29 CVE-2024-23537 Unspecified vulnerability in Apache Fineract
Improper Privilege Management vulnerability in Apache Fineract.This issue affects Apache Fineract: <1.8.5. Users are recommended to upgrade to version 1.9.0, which fixes the issue.
network
low complexity
apache
8.8
2024-03-29 CVE-2024-23538 Unspecified vulnerability in Apache Fineract
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Apache Fineract.This issue affects Apache Fineract: <1.8.5. Users are recommended to upgrade to version 1.8.5 or 1.9.0, which fix the issue.
network
low complexity
apache
critical
9.8
2024-03-29 CVE-2024-23539 Unspecified vulnerability in Apache Fineract
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Apache Fineract.This issue affects Apache Fineract: <1.8.5. Users are recommended to upgrade to version 1.8.5 or 1.9.0, which fix the issue.
network
low complexity
apache
critical
9.8