Mar 31 2022 Critical SQL injection flaw fixed in Rapid7’s Nexpose vulnerability scanner

Source

Attacks could be mounted via manipulation of query operators in search criteria [...]