Vulnerability — CVE-2022-3471

CVE-2022-3471

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2022-3471
Description:: A vulnerability was found in SourceCodester Human Resource Management System. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file city.php. The manipulation of the argument searccity leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-210715.
Last updated date:: 12/28/2023

Type:: exploit
Confidence:: HIGH
Date of publishing:: 10/13/2022
Reference url to background: https://github.com/Hanfu-l/POC-Exp/blob/main/The%20Human%20Resource%20Management%20System%20searccity%20parameter%20is%20injected.pdf