The Le-yan dental management system contains an SQL-injection vulnerability. An unauthenticated remote attacker can inject SQL commands into the input field of the login page to acquire administrator’s privilege and perform arbitrary operations on the system or disrupt service.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.twcert.org.tw/tw/cp-132-5509-80f05-1.html |
History
No history.
MITRE
Status: PUBLISHED
Assigner: twcert
Published: 2022-01-14T04:50:41.453025Z
Updated: 2024-09-17T03:07:31.585Z
Reserved: 2021-12-21T00:00:00
Link: CVE-2022-22055
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-01-14T05:15:11.257
Modified: 2022-01-21T03:30:50.480
Link: CVE-2022-22055
Redhat
No data.