CVE-2022-26283

Publication date

2022-03-21 22:25:20

Family

mitre

State

PUBLISHED

Description

Simple Subscription Website v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in the view_plan endpoint. This vulnerability allows attackers to dump the applications database via crafted HTTP requests.