Lucene search
China National Vulnerability DatabaseCNVD-2022-87036HistoryNov 23, 2022 - 12:00 a.m.
Automotive Shop Management System SQL Injection Vulnerability (CNVD-2022-87036)
2022-11-2300:00:00
China National Vulnerability Database
www.cnvd.org.cn
12
automotive
shop management
sql injection
vulnerability
validation
command execution
sensitive data
database
0.001 Low
EPSS
Percentile
43.1%
Automotive Shop Management System is an automotive shop management system from Carlo Monteroβs personal developer. automotive Shop Management System v1.0 is vulnerable to SQL injection, which stems from a lack of validation of external input SQL statements in its /asms/classes/Master.php?f=delete_mechanic component. An attacker could use this vulnerability to execute illegal SQL commands to steal sensitive database data.
| CPE | Name | Operator | Version |
|---|---|---|---|
| automotive shop management system project automotive shop management system v | eq | 1.0 |
Related
cve
cve
CVE-2022-44378
2022-11-18 18:15:10
nvd
nvd
CVE-2022-44378
2022-11-18 18:15:10
prion
prion
Code injection
2022-11-18 18:15:00
cvelist
cvelist
CVE-2022-44378
2022-11-18 00:00:00