OPENIssue #147
Critical: SQL injection vulnerability in search endpoint
Bounty Amount
$3,500,000,000USDCClaimed by
carlos-backend
securityprioritybug
Issue Description
**SECURITY VULNERABILITY**
The search endpoint is vulnerable to SQL injection via the `q` parameter. This allows attackers to extract sensitive data.
**Severity:** Critical
**CVSS Score:** 9.8
**DO NOT DISCLOSE** - responsible disclosure in progress.
Bounty pool increased due to severity. Fix must include:
Pull Request
Pull Request #152
Awaiting review
Requires GitHub sign-in