4 matches found
CVE-2022-3973
A vulnerability classified as critical has been found in Pingkon HMS-PHP. Affected is an unknown function of the file /admin/admin.php of the component Data Pump Metadata. The manipulation of the argument uname/pass leads to sql injection. It is possible to launch the attack remotely. The exploit...
Sql injection
A vulnerability classified as critical has been found in Pingkon HMS-PHP. Affected is an unknown function of the file /admin/admin.php of the component Data Pump Metadata. The manipulation of the argument uname/pass leads to sql injection. It is possible to launch the attack remotely. The exploit...
CVE-2022-3973 Pingkon HMS-PHP Data Pump Metadata admin.php sql injection
A vulnerability classified as critical has been found in Pingkon HMS-PHP. Affected is an unknown function of the file /admin/admin.php of the component Data Pump Metadata. The manipulation of the argument uname/pass leads to sql injection. It is possible to launch the attack remotely. The exploit...
CVE-2022-3973
CVE-2022-3973 affects Pingkon HMS-PHP, specifically the Data Pump Metadata component, in the file /admin/admin.php. The issue is a SQL injection caused by manipulation of the uname/pass parameter, allowing remote exploitation. Multiple sources (NVD, CVE lists, Red Hat, PRION, etc.) confirm a crit...