CVE-2024-31750

Name of the Vulnerable Software and Affected Versions f-logic datacube3 version 1.0

Description A SQL injection issue allows a remote attacker to obtain sensitive information via the req id parameter. This enables the attacker to potentially extract or modify data without proper authorization.

Recommendations For f-logic datacube3 version 1.0, avoid using the req id parameter in affected API endpoints until the issue is resolved. Consider temporarily restricting access to sensitive data or functions that utilize this parameter to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.