CVE-2022-23865
CVE-2022-23865 (Nyron 1.0) is a SQL injection vulnerability affecting Nyron/Library/Catalog/winlibsrch.aspx. The root cause is lack of validation of external SQL statements in the thes1 parameter, enabling an attacker to inject malicious input. The vulnerability is described across multiple sourc...