Sonarsource: >> Sonarqube >> 10.4.0.87286 Security Vulnerabilities
In SonarSource SonarQube 10.4 through 10.5 before 10.6, a vulnerability was discovered in the authorizations/group-memberships API endpoint that allows SonarQube users with the administrator role to inject blind SQL commands.
CVSS Score
6.7
EPSS Score
0.001
Published
2024-10-04