andreysanyuk/CVE-2023-42284

Releases0

Proof of concept for CVE-2023-42284 in Tyk Gateway

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-42284 ↗	Nov 7, 2023Tuesday, 7 November 2023, 08:15	9.8 CRITICAL	—
Blind SQL injection in api_version parameter in Tyk Gateway version 5.0.3 allows attacker to access and dump the database via a crafted SQL query.