CVE-2022-38267

CVE-2022-38267

EPSS 0.7%

School Activity Updates with SMS Notification v1.0 was discovered to contain a SQL injection vulnerability via the component /modules/user/index.php?view=edit&id=.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/moyess/bug_report/blob/main/vendors/janobe/school-activity-updates-sms-notification/SQLi-1.md