CVE-2022-30493

2022-05-2616:31:02

mitre

www.cve.org

10 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

50.9%

JSON

In oretnom23 Automotive Shop Management System v1.0, the product id parameter suffers from a blind SQL Injection Vulnerability allowing remote attackers to dump all database credential and gain admin access(privilege escalation).

References

github.com/nsparker1337/OpenSource/blob/main/exploit_sql_asms.md