Lucene search

Smartvista Front-End Security Vulnerabilities

cve

CVE-2022-38615

SmartVista SVFE2 v2.2.22 was discovered to contain multiple SQL injection vulnerabilities via the UserForm:j_id88, UserForm:j_id90, and UserForm:j_id92 parameters at /SVFE2/pages/feegroups/service_group.jsf.

8.8CVSS

9.2AI Score

0.001EPSS

2022-09-09 05:15 PM

cve

CVE-2022-38616

SmartVista SVFE2 v2.2.22 was discovered to contain a SQL injection vulnerability via the UserForm:j_id90 parameter at /feegroups/tgrt_group.jsf.

8.8CVSS

8.9AI Score

0.002EPSS

2022-09-13 12:15 PM

cve

CVE-2022-38619

SmartVista SVFE2 v2.2.22 was discovered to contain a SQL injection vulnerability via the UserForm:j_id90 parameter at /SVFE2/pages/feegroups/mcc_group.jsf.

9.8CVSS

9.8AI Score

0.002EPSS

2022-09-21 12:15 AM