IzyBat Orange casiers before 20221102_1 allows SQL Injection via a getCasier.php?taille= URI.
References
Link | Resource |
---|---|
https://github.com/orangecertcc/security-research/security/advisories/GHSA-j94f-5cg6-6j9j | Exploit Third Party Advisory |
Configurations
Information
Published : 2023-01-23 14:15
Updated : 2023-02-02 06:18
NVD link : CVE-2023-22630
Mitre link : CVE-2023-22630
JSON object : View
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Products Affected
izybat
- orange_casiers