RSS   Vulnerabilities for
'Le-yan dental management system'
   RSS

2022-01-14
 
CVE-2022-22055

CWE-89
 

 
The Le-yan dental management system contains an SQL-injection vulnerability. An unauthenticated remote attacker can inject SQL commands into the input field of the login page to acquire administrator�??s privilege and perform arbitrary operations on the system or disrupt service.

 
 
CVE-2022-22056

CWE-798
 

 
The Le-yan dental management system contains a hard-coded credentials vulnerability in the web page source code, which allows an unauthenticated remote attacker to acquire administrator�??s privilege and control the system or disrupt service.

 


Copyright 2024, cxsecurity.com

 

Back to Top