๐Ÿ” CVE Alert

CVE-2026-6093

UNKNOWN 0.0

Corteza 2024.9.8 - SQL Injection in MSSQL JSON-path meta filter via incorrect T-SQL string escaping

CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th

Corteza contains a SQL injection vulnerability in its Microsoft SQL Server (MSSQL) backend when filtering Compose records by the meta field.This issue affects corteza: 2024.9.8.

CWE CWE-89
Vendor cortezaproject
Product corteza
Published May 11, 2026
Last Updated May 11, 2026
Stay Ahead of the Next One

Get instant alerts for cortezaproject corteza

Be the first to know when new unknown vulnerabilities affecting cortezaproject corteza are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

cortezaproject / corteza
2024.9.8

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
fluidattacks.com: https://fluidattacks.com/es/advisories/motley github.com: https://github.com/cortezaproject/corteza

Credits

Fluid Attacks' AI SAST Scanner Oscar Uribe