Vulnerabilities > Fizzday

DATE CVE VULNERABILITY TITLE RISK
2019-02-23 CVE-2019-9047 SQL Injection vulnerability in Fizzday Gorose 1.0.4
GoRose v1.0.4 has SQL Injection when the order_by or group_by parameter can be controlled.
network
low complexity
fizzday CWE-89
7.5