CVE-2022-46093SQL Injection in Management System Project Hospital Management System

CWE-89SQL Injection3 documents3 sources
Severity
8.2HIGHNVD
EPSS
0.3%
top 46.67%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Hospital Management System Project Hospital Management System
Timeline
PublishedJan 13
Latest updateJan 14

Description

Hospital Management System v1.0 is vulnerable to SQL Injection. Attackers can gain administrator privileges without the need for a password.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:NExploitability: 3.9 | Impact: 4.2

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-fh83-fh6p-94qw: Hospital Management System v12023-01-14
CVEList
CVE-2022-46093: Hospital Management System v12023-01-13
CVE-2022-46093 — SQL Injection | cvebase