CVE-2022-38615
SmartVista SVFE2 v2.2.22 is affected by multiple SQL injection vulnerabilities exploitable through the UserForm:j_id88, UserForm:j_id90, and UserForm:j_id92 parameters at /SVFE2/pages/feegroups/service_group.jsf. Affected component/issue: SQL injection in SVFE2 (endpoint path shown). CVSS v3.1 ba...