CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-37786

An issue was discovered in WeCube Platform 3.2.2. There are multiple CSV injection issues: the [Home / Admin / Resources] page, the [Home / Admin / System Params] page, and the [Home / Design / Basekey Configuration] page.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 20.7%

CVSS Severity

CVSS v3 Score 6.3

References

https://github.com/WeBankPartners/wecube-platform
https://github.com/WeBankPartners/wecube-platform/issues/2327
https://github.com/WeBankPartners/wecube-platform
https://github.com/WeBankPartners/wecube-platform/issues/2327

Products affected by CVE-2022-37786

Wecube-Platform Project » Wecube-Platform » Version: 3.2.2

cpe:2.3:a:wecube-platform_project:wecube-platform:3.2.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-37786

Products

Pricing

Contact Us