CVE-2022-38619

Description

SmartVista SVFE2 v2.2.22 was discovered to contain a SQL injection vulnerability via the UserForm:j_id90 parameter at /SVFE2/pages/feegroups/mcc_group.jsf.

Related CPE's

a bpcbt smartvista_front-end 2.2.22 *******

References

https://dtro.gitbook.io/note_cve/sql-injection-in-terminal-mcc-group-feature-of-smartvista-svfe2-version-2.2.22-cve-2022-38619

ExploitThird Party Advisory

http://bpcbt.com

Vendor Advisory

http://smartvista.com

Product

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics

Created by Yello

About Severity.io