PT-2023-14969 · Unknown · Judging Management System

Sanjay Singh

Publicado

2023-01-12

Atualizado

2025-04-08

CVE-2022-46623

CVSS v3.1

7.8

Alta

Vetor

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Judging Management System version 1.0.0

Description The Judging Management System contains a SQL injection issue via the username parameter. This allows for potential exploitation.

Recommendations For Judging Management System version 1.0.0, consider restricting access to the username parameter to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

Exploit

Correção

SQL injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-89

Identificadores relacionados

CVE-2022-46623

Produtos afetados

Judging Management System

PT-2023-14969 · Unknown · Judging Management System

CVE-2022-46623

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6