GITHUBEXPLOIT

esql-injection-poc_B710D009-A8F3-54DD-A71B-C4CF62C1B3E8

May 11, 2026 invoker category_exploit

Description

ES|QL Source-Index Injection — Remote Exploitation PoC Target: elasticsearch-py ES|QL query builder elasticsearch.esql.ESQL.from, ESQL.ts, lookupjoin up to and including v9.4.0 prior to upstream PR 3422. Class: CWE-943 — Improper Neutralization of...
Visit Original Source

Basic Information

ID B710D009-A8F3-54DD-A71B-C4CF62C1B3E8
Published May 12, 2026 at 02:29

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.