Lucene search

CVE-2022-44295

🗓️ 30 Nov 2022 18:09:15Reported by mitreType

cve🔗 web.nvd.nist.gov📰️ 8 Media mentions👁 40 Views🌐 WEB

Sanitization Management System v1.0 SQL Injection Vulnerabilit

Reporter	Title	Published	Views	Family All 3
Cvelist	CVE-2022-44295	30 Nov 202200:00	–	cvelist
Prion	Sql injection	30 Nov 202218:15	–	prion
NVD	CVE-2022-44295	30 Nov 202218:15	–	nvd

Nvd

Node

sanitization_management_system_project sanitization_management_systemMatch1.0

Source	Link
github	www.github.com/Distance10086/bug_report/blob/main/vendors/oretnom23/sanitization-management-system/SQLi-1.md

Parameter	Position	Path	Description	CWE
id	query param	/php-sms/admin/orders/assign_team.php	The parameter 'id' is vulnerable to SQL Injection, allowing attackers to execute arbitrary SQL queries.	CWE-89

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

30 Nov 2022 18:15Current

7.4High risk

Vulners AI Score7.4

CVSS37.2

EPSS0.00114

CWE-89