CVE-2022-43354 The System for Sanitization Management System v1.0 had a SQL injection vulnerability.
A user with the “manage_request” role can access the “id” parameter and execute arbitrary SQL commands on the application. This leads to information exposure
CVE-2022-3059 - Demystifying a Real-World SQL Injection Attack (With Code & Exploit Walkthrough)
In this long read, we’ll break down CVE-2022-3059―a critical vulnerability that allowed attackers to perform both authenticated and unauthenticated SQL Injection attacks. The
CVE-2022-42923 - Forma LMS 3.1. and Earlier – SQL Injection Exploit Walkthrough
Forma LMS is a popular open-source Learning Management System. But like many web applications, it has had its fair share of vulnerabilities. One significant issue
CVE-2022-41680 - SQL Injection in Forma LMS 3.1. and Earlier—How a Simple Student Account Could Dump Your Entire Database
If your organization is using Forma LMS version 3.1. or below, you are exposed to a critical database vulnerability. This post will walk you
CVE-2022-3774 - Critical Resource Deletion Vulnerability in SourceCodester Train Scheduler App 1. — Full Breakdown and Exploit
In October 2022, a severe security vulnerability (CVE-2022-3774, tracked also as VDB-212504) was found in the SourceCodester Train Scheduler App version 1.. This flaw is
Episode
00:00:00
00:00:00