CVE-2022-3495

HIGH Year: 2022
CVSS v3 Score
7.2
High
Weakness Type
CWE-707
View all →

Vulnerability Description

A vulnerability has been found in SourceCodester Simple Online Public Access Catalog 1.0 and classified as critical. This vulnerability affects unknown code of the file /opac/Actions.php?a=login of the component Admin Login. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier of this vulnerability is VDB-210784.

Related Vulnerabilities

CVE-2022-4052

HIGH
CVSS:7.2(High)

A vulnerability was found in Student Attendance Management System and classified as critical. This issue affects some unknown processing of the file /Admin/createClass.php. The manipulation of the arg...

CWE-7072022

CVE-2022-4278

HIGH
CVSS:7.2(High)

A vulnerability was found in SourceCodester Human Resource Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /hrm/employeeadd.php. The manipu...

CWE-7072022

CVE-2022-4282

HIGH
CVSS:7.2(High)

A vulnerability was found in SpringBootCMS and classified as critical. Affected by this issue is some unknown functionality of the component Template Management. The manipulation leads to injection. T...

CWE-7072022

CVE-2022-4322

HIGH
CVSS:7.2(High)

A vulnerability, which was classified as critical, was found in maku-boot up to 2.2.0. This affects the function doExecute of the file AbstractScheduleJob.java of the component Scheduled Task Handler....

CWE-7072022

CVE-2025-26633

HIGH
CVSS:7.0(High)

Improper neutralization in Microsoft Management Console allows an unauthorized attacker to bypass a security feature locally.

CWE-7072025

CVE-2019-10052

HIGH
CVSS:7.5(High)

An issue was discovered in Suricata 4.1.3. If the network packet does not have the right length, the parser tries to access a part of a DHCP packet. At this point, the Rust environment runs into a pan...

CWE-7072019