CVE-2022-0362

CRITICAL

Packagist showdoc/showdoc <2.10.3 - SQL Injection

Title source: llm

SQL Injection in Packagist showdoc/showdoc prior to 2.10.3.

Core 2

Core References

Exploit, Third Party Advisory x_refsource_confirm

Patch, Third Party Advisory x_refsource_misc

CVSS v3 9.8

EPSS 0.0027

EPSS Percentile 50.8%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE

CWE-89

Status published

Products (2)

showdoc/showdoc < 2.10.3

showdoc/showdoc 0 - 2.10.3Packagist

Published Jan 26, 2022

Tracked Since Feb 18, 2026