CVE-2022-31382: SQL Injection
First published: Thu Jun 16 2022(Updated: )
Directory Management System v1.0 was discovered to contain a SQL injection vulnerability via the searchdata parameter in search-dirctory.php.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Phpgurukul Directory Management System | =1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this security issue?
The vulnerability ID for this security issue is CVE-2022-31382.
What is the severity of CVE-2022-31382?
The severity of CVE-2022-31382 is critical with a severity value of 9.8.
What software is affected by CVE-2022-31382?
The Phpgurukul Directory Management System version 1.0 is affected by CVE-2022-31382.
What is the cause of CVE-2022-31382?
CVE-2022-31382 is caused by a SQL injection vulnerability in the searchdata parameter of the search-directory.php file in the Directory Management System v1.0.
How can I mitigate the risk associated with CVE-2022-31382?
To mitigate the risk associated with CVE-2022-31382, apply the latest patch or update provided by Phpgurukul and sanitize user input in the searchdata parameter to prevent SQL injection.
- collector/nvd-api
- collector/nvd-index
- agent/author
- agent/severity
- agent/weakness
- agent/references
- agent/description
- agent/tags
- agent/type
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/mitre-cve
- source/MITRE
- vendor/phpgurukul
- canonical/phpgurukul directory management system
- version/phpgurukul directory management system/1.0