CVE-2022-0153SQL Injection in Forkcms

CWE-89SQL Injection3 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.3%
top 49.52%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Forkcms ForkcmsFork-cms Fork CMSForkcms
Timeline
PublishedMar 24
Latest updateMar 25

Description

SQL Injection in GitHub repository forkcms/forkcms prior to 5.11.1.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

Packagistforkcms/forkcms< 5.11.1
NVDfork-cms/fork_cms< 5.11.1
CVEListV5forkcms/forkcms_forkcmsunspecified5.11.1

Patches

Patch: github.comPatch: huntr.devPatch: github.com

🔴Vulnerability Details

2
GHSA
SQL Injection in Fork CMS2022-03-25
OSV
SQL Injection in Fork CMS2022-03-25
CVE-2022-0153 — SQL Injection in Forkcms Forkcms | cvebase