Vulnerability — CVE-2022-47745

CVE-2022-47745

Reference to the description:: https://nvd.nist.gov/vuln/detail/CVE-2022-47745
Description:: ZenTao 16.4 to 18.0.beta1 is vulnerable to SQL injection. After logging in with any user, you can complete SQL injection by constructing a special request and sending it to function importNotice.
Last updated date:: 01/26/2023

Type:: exploit
Confidence:: HIGH
Date of publishing:: 01/26/2023
Reference url to background: https://github.com/easysoft/zentaopms/issues/106

Type:: exploit
Confidence:: HIGH
Date of publishing:: 01/26/2023
Reference url to background: https://github.com/l3s10n/ZenTaoPMS_SqlInjection