Yichaoxu

**Name of the Vulnerable Software and Affected Versions** Emoncms versions 11.6.9 and later **Description** A SQL Injection vulnerability exists due to improper handling of user-supplied input in the `data` query parameter. This allows attackers to execute arbitrary SQL commands under specific conditions. **Recommendations** Emoncms versions 11.6.9 and later: As a temporary workaround, consider restricting access to the `/feed/insert.json` endpoint until a patch is available.