CVE-2026-8659
OS Command Injection in Rapid7 InsightConnect SQLmap Plugin
OS Command Injection vulnerability in Rapid7 InsightConnect SQLmap Plugin on Linux allows authenticated attackers to execute arbitrary OS commands via the api_host or api_port parameters during connection configuration due to insufficient input validation.
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:H/A:L
Produtos afetados
Rapid7 · InsightConnect SQLmap PluginQuer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →