Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 9:49 p.m.8 views

CVE-2022-38923

BluePage CMS thru v3.9 processes an insufficiently sanitized HTTP Header allowing MySQL Injection in the 'User-Agent' field using a Time-based blind SLEEP payload...

9.8CVSS7.2AI score0.01081EPSS
Exploits2References1
Circl
Circl
added 2023/04/03 6:24 p.m.8 views

CVE-2022-38923

creationtimestamp| type| source ---|---|--- 2023-04-03 18:24:56+00:00| seen| https://t.me/cibsecurity/61328 2023-04-03 19:36:50+00:00| seen| Telegram/FSN3ch32agJ8vGDHr-32QwsNqT-vhDnseQBZOXbikpvlg...

9.8CVSS8.6AI score0.01081EPSS
Exploits2References1
NVD
NVD
added 2023/04/03 3:15 p.m.23 views

CVE-2022-38923

BluePage CMS thru v3.9 processes an insufficiently sanitized HTTP Header allowing MySQL Injection in the 'User-Agent' field using a Time-based blind SLEEP payload...

9.8CVSS9.6AI score0.01081EPSS
Exploits2References3
CVE
CVE
added 2023/04/03 12:0 a.m.51 views

CVE-2022-38923

BluePage CMS (3.9 and earlier) contains SQL injection vulnerabilities due to insufficient sanitization of HTTP header fields. CVE-2022-38923 affects the User-Agent header, enabling MySQL Injection with a time-based blind payload on network access without authentication; CVE-2022-38922 (Red Hat / ...

9.8CVSS9.4AI score0.01081EPSS
Exploits2References3Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/03 12:0 a.m.10 views

CVE-2022-38923

BluePage CMS thru v3.9 processes an insufficiently sanitized HTTP Header allowing MySQL Injection in the 'User-Agent' field using a Time-based blind SLEEP payload...

7.2AI score0.01081EPSS
Exploits2References3
Rows per page
Query Builder