CVE-2025-67811

Name of the Vulnerable Software and Affected Versions Area9 Rhapsode version 1.47.3

Description Area9 Rhapsode version 1.47.3 is susceptible to SQL Injection through multiple API endpoints accessible to authenticated users. Insufficient input validation allows remote attackers to inject arbitrary SQL commands, potentially leading to unauthorized database access and compromise of sensitive data. The API endpoints are vulnerable to injection attacks due to inadequate sanitization of user-supplied input. The vulnerable parameters or variables are not specified.

Recommendations Update Area9 Rhapsode to version 1.47.4 or later.