CVE-2022-31788

CVE-2022-31788

EPSS 13.9%

IdeaLMS 2022 allows SQL injection via the IdeaLMS/ChatRoom/ClassAccessControl/6?isBigBlueButton=0&ClassID= pathname.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://gist.github.com/RNPG/b154f4b2e90340d2f39605989af06bee https://gist.github.com/This-is-Neo/cc5b08ad8a3a60cd81fd1b9c1cb573b4