CVE-2022-44277

Name of the Vulnerable Software and Affected Versions Sanitization Management System version 1.0

Description The issue concerns SQL Injection, which can be exploited via the /php-sms/classes/Master.php?f=delete product API endpoint. This allows for potential manipulation of database queries.

Recommendations For Sanitization Management System version 1.0, consider disabling the delete product function in Master.php until a patch is available to prevent exploitation of the SQL Injection vulnerability. Restrict access to the /php-sms/classes/Master.php API endpoint to minimize the risk of exploitation.