Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2022-45564

Disclosure Date: February 21, 2023 (last updated February 24, 2025)
SQL Injection vulnerability in znfit Home improvement ERP management system V50_20220207,v42 allows attackers to execute arbitrary sql commands via the userCode parameter to the wechat applet.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0