The attacker could get access to the database. The SQL injection is in the username parameter at the login panel: username: admin'--
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://www.gov.il/en/departments/faq/cve_advisories |
History
No history.
MITRE
Status: PUBLISHED
Assigner: INCD
Published: 2022-06-13T16:12:36.414232Z
Updated: 2024-09-16T19:55:53.065Z
Reserved: 2022-01-11T00:00:00
Link: CVE-2022-23168
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-06-13T17:15:09.707
Modified: 2022-06-22T18:08:40.697
Link: CVE-2022-23168
Redhat
No data.