Lucene search
China National Vulnerability DatabaseCNVD-2022-08355HistoryJan 28, 2022 - 12:00 a.m.
showdoc uid parameter SQL injection vulnerability
2022-01-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
0.002 Low
EPSS
Percentile
54.2%
showdoc is an open source tool ideal for IT teams to share documents online. showdoc versions prior to 2.10.3 are vulnerable to SQL injection, which stems from a lack of validation of external input SQL statements in showdoc’s uid parameter. An attacker could exploit this vulnerability to execute illegal SQL commands.
| CPE | Name | Operator | Version |
|---|---|---|---|
| showdoc showdoc | lt | 2.10.3 |
Related
prion
prion
Sql injection
2022-01-26 13:15:00
github
github
SQL Injection in showdoc
2022-01-27 00:01:15
osv
osv
SQL Injection in showdoc
2022-01-27 00:01:15
CVE-2022-0362
2022-01-26 13:15:07
veracode
veracode
SQL Injection
2022-01-27 03:28:32
cvelist
cvelist
CVE-2022-0362 SQL Injection in star7th/showdoc
2022-01-26 12:40:10
huntr
huntr
SQL Injection in star7th/showdoc
2022-01-25 11:49:56
cve
cve
CVE-2022-0362
2022-01-26 13:15:07
nvd
nvd
CVE-2022-0362
2022-01-26 13:15:07