Lucene search
China National Vulnerability DatabaseCNVD-2022-62225HistorySep 06, 2022 - 12:00 a.m.
Expense Management System SQL注入漏洞
2022-09-0600:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
expense management system
sql injection
validation
external input
debit credit component
illegal commands
sensitive data
version v1.0
0.001 Low
EPSS
Percentile
37.7%
Expense Management System is an expense management system. version v1.0 of Expense Management System is vulnerable to SQL injection, which stems from a lack of validation of external input SQL statements in the id parameter of its /Home/debit_credit_p component. An attacker could use this vulnerability to execute illegal SQL commands to steal sensitive database data.
| CPE | Name | Operator | Version |
|---|---|---|---|
| expense management system expense management system v | eq | 1.0 |
Related
prion
prion
Sql injection
2022-09-02 23:15:00
cve
cve
CVE-2022-36754
2022-09-02 23:15:08
cvelist
cvelist
CVE-2022-36754
2022-09-02 22:30:08
nvd
nvd
CVE-2022-36754
2022-09-02 23:15:08