CVE-2024-30922 Information

Description

SQL Injection vulnerability in DerbyNet v9.0 allows a remote attacker to execute arbitrary code via the where Clause in Award Document Rendering.

Reference

https://chocapikk.com/posts/2024/derbynet-vulnerabilities/