← voltar
CVE-2022-27927

CVE-2022-27927

EPSS 13.6%
A SQL injection vulnerability exists in Microfinance Management System 1.0 when MySQL is being used as the application database. An attacker can issue SQL commands to the MySQL database through the vulnerable course_code and/or customer_number parameter.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://packetstormsecurity.com/files/167017/Microfinance-Management-System-1.0-SQL-Injection.htmlhttps://github.com/erengozaydin/Microfinance-Management-System-V1.0-SQL-Injection-Vulnerability-Unauthenticatedhttps://www.sourcecodester.com/php/14822/microfinance-management-system.html