Whit Taylor (Rhino Security Labs)

1 exploit Active since Mar 2025
CVE-2024-55964 METASPLOIT CRITICAL ruby WORKING POC
Appsmith < 1.52 - Authenticated Remote Code Execution via PostgreSQL Datasource Query
An issue was discovered in Appsmith before 1.52. An incorrectly configured PostgreSQL instance in the Appsmith image leads to remote command execution inside the Appsmith Docker container. The attacker must be able to access Appsmith, login to it, create a datasource, create a query against that datasource, and execute that query.
CVSS 9.8