Lucene search
GoogleOSV:CVE-2022-38282HistorySep 09, 2022 - 2:15 p.m.
CVE-2022-38282
2022-09-0914:15:09
Google
osv.dev
3
jfinal cms
sql injection
/admin/videoalbum/list
vulnerable
security issue
CVSS3
7.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
AI Score
8
Confidence
Low
EPSS
0.001
Percentile
37.7%
JFinal CMS 5.1.0 is vulnerable to SQL Injection via /admin/videoalbum/list.
References
Related
cvelist
cvelist
CVE-2022-38282
2022-09-09 13:40:51
nvd
nvd
CVE-2022-38282
2022-09-09 14:15:09
cve
cve
CVE-2022-38282
2022-09-09 14:15:09
prion
prion
Sql injection
2022-09-09 14:15:00
CVSS3
7.2
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
AI Score
8
Confidence
Low
EPSS
0.001
Percentile
37.7%
Related for OSV:CVE-2022-38282