Lucene search
China National Vulnerability DatabaseCNVD-2022-57773HistoryMay 16, 2022 - 12:00 a.m.
Simple Client Management System SQL注入漏洞(CNVD-2022-57773)
2022-05-1600:00:00
China National Vulnerability Database
www.cnvd.org.cn
14
sql injection
carlo montero
version 1.0
vulnerability
post request
validation
illegal commands
sensitive data
database
EPSS
0.002
Percentile
54.5%
Simple Client Management System is a simple client management system from Carlo Montero’s personal developer. version 1.0 of Simple Client Management System is vulnerable to SQL injection, which originates from a vulnerability in /cms/classes/Master. php?f=delete_client in the post request id parameter lack of validation of external input SQL statements, an attacker can use this vulnerability to execute illegal SQL commands to steal sensitive database data.
Related
prion
prion
Sql injection
2022-05-12 15:15:00
cvelist
cvelist
CVE-2022-29751
2022-05-12 14:30:16
nvd
nvd
CVE-2022-29751
2022-05-12 15:15:08
cve
cve
CVE-2022-29751
2022-05-12 15:15:08