Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Wealth Subscribe
Filtered by product Bonanza Wealth Management System
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-30335 1 Wealth 1 Bonanza Wealth Management System 2022-05-17 7.5 HIGH 9.8 CRITICAL
Bonanza Wealth Management System (BWM) 7.3.2 allows SQL injection via the login form. Users who supply the application with a SQL injection payload in the User Name textbox could collect all passwords in encrypted format from the Microsoft SQL Server component.