CVE-2022-45297
EQ Enterprise Management System versions 1.5.31 to 2.2.0 contain a SQL injection vulnerability exploitable via the UserPwd parameter. The flaw arises in the login/auth flow and can enable unauthorized access to sensitive data (high confidentiality/integrity/availability impact per CVSS 3.1). Publ...