CVE-2026-57821 | Apache Fineract up to 1.14.0/1.14.x Office Search API /api/v1/offices orderBy sql injection

SecurityVulns

A vulnerability was found in Apache Fineract up to 1.14.0/1.14.x and classified as critical. Impacted is an unknown function of the file /api/v1/offices of the component Office Search API. Such manipulation of the argument orderBy leads to sql injection.

This vulnerability is listed as CVE-2026-57821. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More