CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Bpcbt: >> Smartvista >> 2.2.22 Security Vulnerabilities

CVE-2022-38618

SmartVista SVFE2 v2.2.22 was discovered to contain a SQL injection vulnerability via the UserForm:j_id88, UserForm:j_id90, and UserForm:j_id92 parameters at /SVFE2/pages/feegroups/country_group.jsf.

CVSS Score

8.8

EPSS Score

0.001

Published

2022-09-19

CVE-2022-38617

SmartVista SVFE2 v2.2.22 was discovered to contain a SQL injection vulnerability via the voiceAudit:j_id97 parameter at /SVFE2/pages/audit/voiceaudit.jsf.

CVSS Score

8.8

EPSS Score

0.001

Published

2022-09-19

CVE-2022-35554

Multiple reflected XSS vulnerabilities occur when handling error message of BPC SmartVista version 3.28.0 allowing an attacker to execute javascript code at client side.

CVSS Score

6.1

EPSS Score

0.001

Published

2022-08-19

Page 1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved