CVE ID: CVE-2022-47523
Severity: High
Update Released Build: 10.1.2228.19
Update Released Date: 07/01/2023
An authenticated SQL injection vulnerability in Vulnerability Manager Plus (CVE-2022-47523) was identified which may allow an adversary to execute custom queries and access the database table entries. This has now been fixed by enhancing validation and escaping special characters.
Upgrading to the latest version is strongly advised due to this vulnerability's severity. To upgrade, follow the steps below:
Note: In case of any queries, kindly write to our support team at vulnerabilitymanagerplus-support@manageengine.com |