CVE-2022-33149|A sql injection vulnerability exists...

A sql injection vulnerability exists... CVE-2022-33149

- AV AC AU C I A

发布： 2022-08-22

修订： 2024-11-21

CWE-89

A sql injection vulnerability exists in the ObjectYPT functionality of WWBN AVideo 11.6 and dev master commit 3f7c0364. A specially-crafted HTTP request can lead to a SQL injection. An attacker can send an HTTP request to trigger this vulnerability.This vulnerability exists in the CloneSite plugin, allowing an attacker to inject SQL by manipulating the url parameter.

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有1条受影响产品信息

您还没有登录，登录后可查看更多

添加资源
收藏资源
问题反馈

贡献用户

暂无贡献用户

VULHUB ™

A sql injection vulnerability exists... CVE-2022-33149

漏洞利用/PoC

受影响的平台与产品

贡献用户

相关漏洞清单