exploitDog

CVE-2022-37185

Опубликовано: 06 сент. 2022

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

SQL injection vulnerability exists in the school information query interface (repschoolproj.php) of the EMS 6.2 system of the Office of the Thai Basic Education Commission, which can lead to data leakage.

Ссылки

http://eme1.obec.go.th
Broken Link
http://eme1.obec.go.th/~eme62/repschoolproj.php?claster=school&idarea=648
Broken Link
https://github.com/00xdF/emes/blob/main/readme.md
Broken Link
https://exchange.xforce.ibmcloud.com/vulnerabilities/235480
Third Party Advisory
http://eme1.obec.go.th
Broken Link
http://eme1.obec.go.th/~eme62/repschoolproj.php?claster=school&idarea=648
Broken Link
https://github.com/00xdF/emes/blob/main/readme.md
Broken Link

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:ems_project:ems:6.2:*:*:*:*:*:*:*

EPSS

Процентиль: 26%

0.00086

Низкий

7.5 High

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-226r-vp6f-653x

CVSS3: 7.5

github

почти 3 года назад

SQL injection vulnerability exists in the school information query interface (repschoolproj.php) of the EMS 6.2 system of the Office of the Thai Basic Education Commission, which can lead to data leakage.

EPSS

Процентиль: 26%

0.00086

Низкий

7.5 High

CVSS3

Дефекты

CWE-89