Lucene search
OpenJS FoundationFRIENDSOFPHP:SILVERSTRIPE:FRAMEWORK:CVE-2022-38148HistoryNov 21, 2021 - 12:00 a.m.
CVE-2022-38148 - Blind SQL Injection via GridFieldSortableHeader
2021-11-2100:00:00
OpenJS Foundation
github.com
5
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.2 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
66.2%
Affected configurations
Node
silverstripeframeworkRange<4.11.14
| CPE | Name | Operator | Version |
|---|---|---|---|
| silverstripe/framework | lt | 4.11.14 |
Related
osv
osv
CVE-2022-38148
2022-11-21 16:15:13
Blind SQL Injection via GridFieldSortableHeader
2022-11-22 00:00:07
prion
prion
Sql injection
2022-11-21 16:15:00
nvd
nvd
CVE-2022-38148
2022-11-21 16:15:13
cve
cve
CVE-2022-38148
2022-11-21 16:15:13
cvelist
cvelist
CVE-2022-38148
2022-11-21 00:00:00
github
github
Blind SQL Injection via GridFieldSortableHeader
2022-11-22 00:00:07
veracode
veracode
SQL Injection
2022-11-22 08:36:22
8.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.2 High
AI Score
Confidence
Low
0.003 Low
EPSS
Percentile
66.2%
Related for FRIENDSOFPHP:SILVERSTRIPE:FRAMEWORK:CVE-2022-38148