Ideatms
1 CVEs
product
Monthly
IdeaTMS 2022 is vulnerable to SQL Injection via the PATH_INFO. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
SQLi
Ideatms
NVD
GitHub
CVSS 3.1
9.8
EPSS
1.4%
EPSS 1%
CVSS 9.8
CRITICAL
POC
Act Now
IdeaTMS 2022 is vulnerable to SQL Injection via the PATH_INFO. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
SQLi
Ideatms
NVD
GitHub