Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2023-22665

Disclosure Date: April 25, 2023 (last updated October 08, 2023)
There is insufficient checking of user queries in Apache Jena versions 4.7.0 and earlier, when invoking custom scripts. It allows a remote user to execute arbitrary javascript via a SPARQL query.
Attack Vector: NetworkPrivileges: LowUser Interaction: Required
0
0