CVE-2020-35666 (v3: 8.8)
23 Dec 2020
Steedos Platform through 1.21.24 allows NoSQL injection because the /api/collection/findone implementation in server/packages/steedos_base.js mishandl...
Read more ➔