Security Advisory

CVE-2022-26285

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-03-21 22:25:22

Last updated 2024-08-03 04:56:37

Assigner mitre

State PUBLISHED

Description

Simple Subscription Website v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in the apply endpoint. This vulnerability allows attackers to dump the applications database via crafted HTTP requests.

← Browse all CVEs View on cve.org ↗