CVE-2022-23986

shimosyan/phpUploader

on github

Published

February 24, 2022

Severity

CVSS v3:

7.5 HIGH

CVSS v2:

5 MEDIUM

Description

SQL injection vulnerability in the phpUploader v1.2 and earlier allows a remote unauthenticated attacker to obtain the information in the database via unspecified vectors.

References

https://github.com/shimosyan/phpUploader/releases/tag/v1.2.1
https://jvn.jp/en/jp/JVN00095004/index.html

Configurations

CPE23	Version Start	Version End	Exact Version
cpe:2.3:a:phpuploader_project:phpuploader::::::::	n/a	1.2 (including)	*

External Links

NVD - CVE-2022-23986