Vulnerabilities > BOA > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-11-23 | CVE-2022-44117 | SQL Injection vulnerability in BOA 0.94.14.21 Boa 0.94.14rc21 is vulnerable to SQL Injection via username. | 9.8 |
| 2019-10-11 | CVE-2018-21027 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in BOA Boa through 0.94.14rc21 allows remote attackers to trigger an out-of-memory (OOM) condition because malloc is mishandled. | 9.8 |