CVE-2022-40115
CVE-2022-40115 affects Online Banking System v1.0, with a SQL injection vulnerability in /net-banking/delete_beneficiary.php via the cust_id parameter. The CVSS v3.1 vector is AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (base score 9.8; CRITICAL). Exploitation requires network access, no user interaction...