Lucene search

VulDBCVE-2022-3789

HistoryNov 01, 2022 - 2:15 p.m.

CVE-2022-3789

2022-11-0114:15:12

CWE-707

CWE-89

VulDB

web.nvd.nist.gov

cve-2022-3789

tim campus confession wall

sql injection

post_id

vdb-212611

nvd

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.7

Confidence

High

EPSS

0.005

Percentile

76.7%

JSON

A vulnerability has been found in Tim Campus Confession Wall and classified as critical. Affected by this vulnerability is an unknown functionality of the file share.php. The manipulation of the argument post_id leads to sql injection. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-212611.

Affected configurations

Nvd

Node

tim_campus_confession_wall_projecttim_campus_confession_wallMatch-

VendorProductVersionCPE
tim_campus_confession_wall_projecttim_campus_confession_wall-cpe:2.3:a:tim_campus_confession_wall_project:tim_campus_confession_wall:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
tim_campus_confession_wall_project	tim_campus_confession_wall	-	cpe:2.3:a:tim_campus_confession_wall_project:tim_campus_confession_wall:-:::::::*

CNA Affected

[
  {
    "vendor": "Tim Campus",
    "product": "Confession Wall",
    "versions": [
      {
        "version": "n/a",
        "status": "affected"
      }
    ]
  }
]

References

github.com/whiex/-Tim-Campus-Confession-Wall

vuldb.com/?id.212611

Social References

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.7

Confidence

High

EPSS

0.005

Percentile

76.7%

JSON

Related for CVE-2022-3789