PT-2022-17703 · Unknown · Air Cargo Management System

Published

2022-03-02

Updated

2022-03-14

CVE-2022-26169

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Air Cargo Management System version 1.0

Description A SQL injection issue was found in the Air Cargo Management System, specifically via the ref code parameter.

Recommendations For Air Cargo Management System version 1.0, consider restricting the use of the ref code parameter until a patch is available. At the moment, there is no information about a newer version that contains a fix for this issue.

Exploit

Fix

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-89

Related Identifiers

CVE-2022-26169

Affected Products

Air Cargo Management System

PT-2022-17703 · Unknown · Air Cargo Management System

CVE-2022-26169

Weakness Enumeration

Related Identifiers

Affected Products

References · 3