Bedita · Bedita · CVE-2019-15570
**Name of the Vulnerable Software and Affected Versions**
BEdita versions prior to 4.0.0-RC2
**Description**
The issue allows SQL injection during a save operation for a relation with parameters due to a lack of JSON escaping.
**Recommendations**
For versions prior to 4.0.0-RC2, update to a version that includes proper JSON escaping to prevent SQL injection attacks.