Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2022-40347
HistoryFeb 17, 2023 - 12:00 a.m.

CVE-2022-40347

2023-02-1700:00:00
mitre
www.cve.org
4
sql injection
intern record system
version 1.0
controller.php
phone parameter
email parameter
depttype parameter
name parameter
arbitrary code
sensitive information

EPSS

0.002

Percentile

65.3%

JSON

SQL Injection vulnerability in Intern Record System version 1.0 in /intern/controller.php in ‘phone’, ‘email’, ‘deptType’ and ‘name’ parameters, allows attackers to execute arbitrary code and gain sensitive information.

Related

exploitdb 1
prion 1
nvd 1
zdt 1
cve 1
packetstorm 1
exploitdb
exploitdb
Intern Record System v1.0 - SQL Injection (Unauthenticated)
2023-04-06 00:00:00
prion
prion
Sql injection
2023-02-17 13:15:00
nvd
nvd
CVE-2022-40347
2023-02-17 13:15:10
zdt
zdt
Intern Record System v1.0 - SQL Injection (Unauthenticated) Vulnerability
2023-04-06 00:00:00
cve
cve
CVE-2022-40347
2023-02-17 13:15:10
packetstorm
packetstorm
Intern Record System 1.0 SQL Injection
2023-04-06 00:00:00

EPSS

0.002

Percentile

65.3%

JSON
Related for CVELIST:CVE-2022-40347
exploitdb1prion1nvd1zdt1cve1packetstorm1