CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2022-38618

SmartVista SVFE2 v2.2.22 was discovered to contain a SQL injection vulnerability via the UserForm:j_id88, UserForm:j_id90, and UserForm:j_id92 parameters at /SVFE2/pages/feegroups/country_group.jsf.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 27.1%

CVSS Severity

CVSS v3 Score 8.8

References

http://bpcbt.com
http://smartvista.com
https://dtro.gitbook.io/note_cve/sql-injection-in-terminal-tariff-group-feature-of-smartvista-svfe2-version-2.2.22-cve-2022-38618
http://bpcbt.com
http://smartvista.com
https://dtro.gitbook.io/note_cve/sql-injection-in-terminal-tariff-group-feature-of-smartvista-svfe2-version-2.2.22-cve-2022-38618

Products affected by CVE-2022-38618

Bpcbt » Smartvista » Version: 2.2.22

cpe:2.3:a:bpcbt:smartvista:2.2.22

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2022-38618

Products

Pricing

Contact Us