CVE-2022-1838

Name of the Vulnerable Software and Affected Versions Home Clean Services Management System version 1.0

Description A critical issue has been discovered, affecting an unknown part of the admin/login.php component. The manipulation of the username argument with a specific input leads to SQL injection. This issue can be exploited remotely, but authentication is required. Exploit details are publicly available.

Recommendations For Home Clean Services Management System version 1.0, consider temporarily restricting access to the admin/login.php component until a patch is available. Avoid using the username argument in the affected login functionality to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.