2 matches found
CVE-2022-27104
An Unauthenticated time-based blind SQL injection vulnerability exists in Forma LMS prior to v.1.4.3...
CVE-2022-27104
CVE-2022-27104 affects Forma LMS prior to v1.4.3 . The vulnerability is an Unauthenticated time-based blind SQL injection arising from inadequate validation of externally supplied SQL statements. Impact is described as high/severe in CVSS terms, with potential confidentiality, integrity, and avai...