benkeen generatedata 4.0.14: SQL Injection via User Input

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

9.8

benkeen generatedata 4.0.14: SQL Injection via User Input

CVE-2025-70024

Summary

A security issue was found in benkeen generatedata 4.0.14 that could allow an attacker to inject malicious SQL code if the application doesn't properly sanitize user input. This could potentially allow an attacker to access or modify sensitive data. To fix this issue, update to the latest version of benkeen generatedata or apply the recommended patch.

Original title

An issue pertaining to CWE-89: Improper Neutralization of Special Elements used in an SQL Command was discovered in benkeen generatedata 4.0.14.

Original description

An issue pertaining to CWE-89: Improper Neutralization of Special Elements used in an SQL Command was discovered in benkeen generatedata 4.0.14.

Vulnerability type

CWE-89 SQL Injection

https://gist.github.com/zcxlighthouse/4983275f71824ff47b9bdca9de7cb36a
https://github.com/benkeen
https://github.com/benkeen/generatedata

Published: 11 Mar 2026 · Updated: 14 Mar 2026 · First seen: 11 Mar 2026