CVE-2022-29007: SQL Injection
First published: Wed May 11 2022(Updated: )
Multiple SQL injection vulnerabilities via the username and password parameters in the Admin panel of Dairy Farm Shop Management System v1.0 allows attackers to bypass authentication.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| PHPGurukul Dairy Farm Shop Management System | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-29007?
CVE-2022-29007 is a vulnerability in the Admin panel of Dairy Farm Shop Management System v1.0 that allows attackers to bypass authentication through multiple SQL injection vulnerabilities in the username and password parameters.
How severe is CVE-2022-29007?
CVE-2022-29007 has a severity rating of 9.8 (critical).
What software is affected by CVE-2022-29007?
The Dairy Farm Shop Management System v1.0 is affected by CVE-2022-29007.
How can an attacker exploit CVE-2022-29007?
An attacker can exploit CVE-2022-29007 by using SQL injection techniques on the username and password parameters in the Admin panel.
Is there a fix available for CVE-2022-29007?
At the moment, there is no known fix available for CVE-2022-29007. It is recommended to update to a newer version of the Dairy Farm Shop Management System if one becomes available.
- collector/nvd-api
- collector/nvd-index
- agent/references
- agent/severity
- agent/author
- agent/weakness
- agent/event
- agent/type
- agent/description
- agent/last-modified-date
- agent/first-publish-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/phpgurukul
- canonical/phpgurukul dairy farm shop management system
- version/phpgurukul dairy farm shop management system/1.0