Lucene search
HistoryDec 02, 2022 - 8:15 p.m.
CVE-2022-44291
cve-2022-44291
webtareas
sql injection
phasesets.php
vulnerability
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.01 Low
EPSS
Percentile
83.6%
webTareas 2.4p5 was discovered to contain a SQL injection vulnerability via the id parameter in phasesets.php.
Affected configurations
Node
webtareas_projectwebtareasMatch2.4p5
| CPE | Name | Operator | Version |
|---|---|---|---|
| webtareas_project:webtareas | webtareas project webtareas | eq | 2.4 |
Related
nuclei
nuclei
WebTareas 2.4p5 - SQL Injection
2023-10-17 07:20:28
prion
prion
Sql injection
2022-12-02 20:15:00
cvelist
cvelist
CVE-2022-44291
2022-12-02 00:00:00
nvd
nvd
CVE-2022-44291
2022-12-02 20:15:13
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.01 Low
EPSS
Percentile
83.6%
Related for CVE-2022-44291