Lucene search
MitreCVE-2022-37152HistoryAug 26, 2022 - 1:15 p.m.
CVE-2022-37152
2022-08-2613:15:08
CWE-89
mitre
web.nvd.nist.gov
28
4
cve-2022-37152
online diagnostic lab management system
sql injection
nvd
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.002
Percentile
52.3%
An issue was discovered in Online Diagnostic Lab Management System 1.0, There is a SQL injection vulnerability via “dob” parameter in “/classes/Users.php?f=save_client”
Affected configurations
Node
online_diagnostic_lab_management_system_projectonline_diagnostic_lab_management_systemMatch1.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| online_diagnostic_lab_management_system_project | online_diagnostic_lab_management_system | 1.0 | cpe:2.3:a:online_diagnostic_lab_management_system_project:online_diagnostic_lab_management_system:1.0:*:*:*:*:*:*:* |
References
Social References
More
Related
prion
prion
Sql injection
2022-08-26 13:15:00
nvd
nvd
CVE-2022-37152
2022-08-26 13:15:08
cvelist
cvelist
CVE-2022-37152
2022-08-26 12:17:49
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.002
Percentile
52.3%
Related for CVE-2022-37152