CVE-2022-29982: SQL Injection
First published: Thu May 12 2022(Updated: )
Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/maintenance/manage_service.php?id=.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Simple Client Management System Project Simple Client Management System | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2022-29982?
CVE-2022-29982 is a critical vulnerability in Simple Client Management System 1.0 that allows for SQL Injection via the 'manage_service.php?id=' parameter.
How severe is CVE-2022-29982?
CVE-2022-29982 has a severity rating of 9.8, which is considered critical.
How does SQL Injection occur in Simple Client Management System 1.0?
SQL Injection can occur in Simple Client Management System 1.0 when an attacker manipulates the 'id' parameter in the 'manage_service.php' page.
What is the affected software version of CVE-2022-29982?
The affected software version of CVE-2022-29982 is Simple Client Management System 1.0.
Is there a fix available for CVE-2022-29982?
It is recommended to update Simple Client Management System to the latest version or apply the vendor's patch to fix CVE-2022-29982.
- collector/nvd-index
- agent/references
- agent/event
- agent/severity
- agent/weakness
- agent/author
- agent/description
- agent/type
- agent/softwarecombine
- agent/first-publish-date
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/simple client management system project
- canonical/simple client management system project simple client management system
- version/simple client management system project simple client management system/1.0