CVE-2022-4726

CVSS v3.1

9.8

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions SourceCodester Sanitization Management System version 1.0

Description A critical vulnerability was found in the Admin Login component, where the manipulation of the username and password arguments leads to SQL injection. The attack can be launched remotely.

Recommendations For SourceCodester Sanitization Management System version 1.0, consider temporarily restricting access to the Admin Login component until a patch is available. As a mitigation measure, avoid using the username and password arguments in the affected login functionality to minimize the risk of exploitation.

Fix

Improper Neutralization

SQL injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-707CWE-89

Related Identifiers

CVE-2022-4726

Affected Products

Sourcecodester Sanitization Management System

CVE-2022-4726

Weakness Enumeration

Related Identifiers

Affected Products

References · 5