CVE-2022-44291

CRITICAL NUCLEI

webTareas 2.4p5 - SQL Injection

Title source: llm

Description

webTareas 2.4p5 was discovered to contain a SQL injection vulnerability via the id parameter in phasesets.php.

Nuclei Templates (1)

WebTareas 2.4p5 - SQL Injection
CRITICALVERIFIEDby theamanrawat

References (2)

Scores

CVSS v3 9.8
EPSS 0.6640
EPSS Percentile 98.5%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment
Exploitation poc
Automatable no
Technical Impact total

Details

CWE
CWE-89
Status published
Products (1)
webtareas_project/webtareas 2.4 p5
Published Dec 02, 2022
Tracked Since Feb 18, 2026