CVE-2022-36277
SQL injection vulnerability in TCMAN GIM
The 'sReferencia', 'sDescripcion', 'txtCodigo' and 'txtDescripcion' parameters, in the frmGestionStock.aspx and frmEditServicio.aspx files in TCMAN GIM v8.0.1, could allow an attacker to perform persistent XSS attacks.
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:L
Affected products
TCMAN · GIMWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →