The Apache Software Foundation has disclosed a critical SQL injection vulnerability in its widely utilized financial platform, Apache Fineract.
The flaw, tracked as CVE-2024-32838, affects multiple API endpoints and poses a significant risk to applications built on this platform.
This vulnerability allows authenticated attackers to inject malicious SQL data, potentially compromising sensitive information and the overall integrity of the database.
https://gbhackers.com/apache-fineract-s ... erability/