Vulnerabilities > NDK Design > High

DATE CVE VULNERABILITY TITLE RISK
2022-11-01 CVE-2022-40839 SQL Injection vulnerability in Ndk-Design Ndkadvancedcustomizationfields 3.5.0
A SQL injection vulnerability in the height and width parameter in NdkAdvancedCustomizationFields v3.5.0 allows unauthenticated attackers to exfiltrate database data.
network
low complexity
ndk-design CWE-89
7.5
7.5