1. Home
  2. Whats New
  3. Release
  4. Test Management For Jira
  5. Security Patch – SQL injection for new API fields

Security Patch – SQL injection for new API fields

Security Update – 18th of December 2023

Validate SQL injection for new API fields (RESOLVED)  – The issue was introduced on the 7th of December 2023 as a result of the latest release introducing a new Dashboard.

Input sanitization techniques were required to remove potentially harmful characters from certain API inputs.

New API fields introduced for the latest Vansah dashboard were not parameterized instead had been dynamically constructing SQL queries with user inputs.

As a result of the recent fix new fields have been included as part of global parameterization framework.

  • No security incidents identified
  • No further action is required

Our team has successfully patched the vulnerability that was identified, ensuring that our systems are secure. You can continue to use our services with confidence, knowing that your data is protected.

Related Articles