Tirreno: >> Tirreno >> 0.9.5 Security Vulnerabilities
SQL Injection vulnerability exists in Tirreno v0.9.5, specifically in the /admin/loadUsers API endpoint. The vulnerability arises due to unsafe handling of user-supplied input in the columns[0][data] parameter, which is directly used in SQL queries without proper validation or parameterization.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-09-02