CVE-2022-23336: SQL Injection
First published: Mon Feb 14 2022(Updated: )
S-CMS v5.0 was discovered to contain a SQL injection vulnerability in member_pay.php via the O_id parameter.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| S-cms S-cms | =5.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2022-23336?
CVE-2022-23336 is a SQL injection vulnerability in S-CMS v5.0.
What is the severity of CVE-2022-23336?
CVE-2022-23336 has a severity rating of 9.8 (Critical).
How does CVE-2022-23336 affect S-CMS v5.0?
CVE-2022-23336 affects S-CMS v5.0 through the member_pay.php file via the O_id parameter.
How can I fix CVE-2022-23336?
To fix CVE-2022-23336, it is recommended to update S-CMS to a patched version or apply security patches.
Is there a reference for CVE-2022-23336?
Yes, you can find more information about CVE-2022-23336 at this reference: http://note.youdao.com/noteshare?id=30c7cdeac5c7611fdf64379eb4569269
- agent/author
- agent/description
- agent/event
- agent/first-publish-date
- agent/references
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/type
- agent/weakness
- collector/nvd-index
- vendor/s-cms
- canonical/s-cms s-cms
- version/s-cms s-cms/5.0