OpenText Flipper HQL Injection Vulnerability

Vulnerability

A SQL injection vulnerability has been identified in OpenText Flipper version 3.1.2. This vulnerability allows a low-privilege user to interact with the database in unintended ways, potentially extracting data by manipulating the HQL processor.

Impact

Exploitation of this vulnerability could enable a low-privilege user to access and extract data from the database by interacting with the HQL processor, leading to unauthorized data exposure.

Added: Oct 20, 2025, 8:17 PM

Updated: Oct 20, 2025, 8:17 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.8

threat

0.0

urgency

1.4

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.8

threat

0.0

urgency

1.4

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

OpenText Flipper HQL Injection Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating