CVE

CVE-2022-48596

admin

CVE-2022-48596

A SQL injection vulnerability exists in the “ticket queue watchers� feature of the ScienceLogic SL1 that takes unsanitized user?controlled input and passes it directly to a SQL query. This allows for the injection of arbitrary SQL before being executed against the database.

Source: CVE-2022-48596

Exit mobile version