ГлавнаяУязвимости → CVE-2022-50805
8.2высокая

CVE-2022-50805

Описание

Senayan Library Management System 9.0.0 contains a SQL injection vulnerability in the 'class' parameter that allows attackers to inject malicious SQL queries. Attackers can exploit the vulnerability by submitting crafted payloads to manipulate database queries and potentially extract sensitive information.

CVSS
Балл8.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N
Источники
https://github.com/nu11secur1ty/CVE-nu11secur1ty/tree/main/vendors/slims.web.id/SLIMS-9.0.0/SQLihttps://slims.web.id/web/https://www.exploit-db.com/exploits/51161https://www.vulncheck.com/advisories/senayan-library-management-system-sql-injection