CVE-2022-4093

SQL injection attacks can result in unauthorized access to sensitive data, such as passwords, credit card details, or personal user information. Many high-profile data breaches in recent years have been the result of SQL injection attacks, leading to reputational damage and regulatory fines. In some cases, an attacker can obtain a persistent backdoor into an organization's systems, leading to a long-term compromise that can go unnoticed for an extended period. This affect 16.0.1 and 16.0.2 only. 16.0.0 or lower, and 16.0.3 or higher are not affected
References
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:dolibarr:dolibarr_erp\/crm:16.0.1:*:*:*:*:*:*:*
cpe:2.3:a:dolibarr:dolibarr_erp\/crm:16.0.2:*:*:*:*:*:*:*

Information

Published : 2022-11-20 21:15

Updated : 2022-11-23 06:15


NVD link : CVE-2022-4093

Mitre link : CVE-2022-4093


JSON object : View

CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Advertisement

dedicated server usa

Products Affected

dolibarr

  • dolibarr_erp\/crm