Security Advisory

CVE-2022-38922

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-04-03 00:00:00
Last updated 2025-02-18 15:57:33
Assigner mitre
State PUBLISHED

Description

BluePage CMS thru 3.9 processes an insufficiently sanitized HTTP Header Cookie value allowing MySQL Injection in the users-cookie-settings token using a Time-based blind SLEEP payload.