CVE-2022-40032

Description

SQL Injection vulnerability in Simple Task Managing System version 1.0 in login.php in 'username' and 'password' parameters, allows attackers to execute arbitrary code and gain sensitive information.

NVD
Severity: CRITICAL
CVE ID: CVE-2022-40032
CVSS Score: 9.8
CVSS Metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Refrence: NVD MITRE

Proof Of Concept

Nuclei Templates for CVE-2022-40032

Refrence: Project Discovery GitHub

h4md153v63n

CVE-2022-40032: Simple Task Managing System - 'login' and 'password' SQL Injection (Unauthenticated)

Refrence: GitHub

Description​

Proof Of Concept​

Description

Proof Of Concept