Security Advisory

CVE-2022-44785

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-11-21 00:00:00
Last updated 2025-04-29 15:51:22
Assigner mitre
State PUBLISHED

Description

An issue was discovered in Appalti & Contratti 9.12.2. The target web applications are subject to multiple SQL Injection vulnerabilities, some of which executable even by unauthenticated users, as demonstrated by the GetListaEnti.do cfamm parameter.