Vulnerability CVE-2022-4088


Published: 2022-11-24

Description:
A vulnerability was found in rickxy Stock Management System and classified as critical. Affected by this issue is some unknown functionality of the file /pages/processlogin.php. The manipulation of the argument user/password leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-214322 is the identifier assigned to this vulnerability.

Type:

CWE-89

(Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'))

 References:
https://vuldb.com/?id.214322
https://github.com/rickxy/Stock-Management-System/issues/2

Copyright 2022, cxsecurity.com

 

Back to Top