CVE-2022-45135 | Apache Cocoon =2.2.x sql injection

Posted by Angelo Barbosa | Nov 30, 2023 | CVE

A vulnerability classified as critical has been found in Apache Cocoon =2.2.x. Affected is an unknown function. The manipulation leads to sql injection.

This vulnerability is traded as CVE-2022-45135. Access to the local network is required for this attack to succeed. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2022-45135 | Apache Cocoon =2.2.x sql injection

Related Posts

CVE-2024-36112 | Nautobot prior 1.6.23/2.2.5 /extras/dynamic-groups/ insufficient permissions or privileges (GHSA-qmjf-wc2h-6x3q)

CVE-2024-39439 | Unisoc T606/T612/T616/T610/T618/T760/T770/T820/S8000 DRM Service out-of-bounds write

CVE-2024-33831 | yapi 1.10.2 Advanced Expectation Response module body cross site scripting (Issue 2745)

CVE-2024-3666 | Opal Estate Pro Plugin up to 1.7.6 on WordPress cross site scripting