CVE-2022-26285

Publication date

2022-03-21 22:25:22

Family

mitre

State

PUBLISHED

Description

Simple Subscription Website v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in the apply endpoint. This vulnerability allows attackers to dump the applications database via crafted HTTP requests.