Covid-19 Travel Pass Management System SQL Injection Vulnerability (CNVD-2022-85124)

2022-05-1700:00:00

China National Vulnerability Database

www.cnvd.org.cn

0.001 Low

EPSS

Percentile

38.0%

JSON

Covid-19 Travel Pass Management System is a Covid-19 travel pass management system. Covid-19 Travel Pass Management System v1.0 has a SQL injection vulnerability, which originates from ctpms/admin/?page=user/manage_user&id=lack of filtering and escaping for parameters, which can be exploited by attackers to conduct SQL injection attacks.

CPENameOperatorVersion
covid-19 travel pass management system covid-19 travel pass management system veq1.0

CPE	Name	Operator	Version
	covid-19 travel pass management system covid-19 travel pass management system v	eq	1.0

0.001 Low

EPSS

Percentile

38.0%

JSON

Related for CNVD-2022-85124