CVE-2022-30469

CVE-2022-30469

EPSS 1.4%

In Afian Filerun 20220202, lack of sanitization of the POST parameter "metadata[]" in `/?module=fileman&section=get&page=grid` leads to SQL injection.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://filerun.com/changelog https://github.com/blockomat2100/PoCs/blob/main/filerun/CVE-2022-30469.md