Vulnerabilities

CVE-2025-50468

by Fred · 08/08/2025

OpenMetadata <=1.4.4 is vulnerable to SQL Injection. An attacker can extract information from the database in function listCount in the DocStoreDAO interface. The entityType parameters can be used to build a SQL query. More information : https://gist.github.com/javadk/0be29d2bb5a971bc09f3410659c83308

Similar

Tags: Cybersecurity Alert