CVE-2022-38923

Publication date

2023-04-03 00:00:00

Family

mitre

State

PUBLISHED

Description

BluePage CMS thru v3.9 processes an insufficiently sanitized HTTP Header allowing MySQL Injection in the User-Agent field using a Time-based blind SLEEP payload.