High severityNVD Advisory· Published Mar 25, 2022· Updated Aug 2, 2024
SQL injection through marking blog comments on bulk as spam in forkcms/forkcms
CVE-2022-1064
Description
SQL injection through marking blog comments on bulk as spam in GitHub repository forkcms/forkcms prior to 5.11.1.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
forkcms/forkcmsPackagist | < 5.11.1 | 5.11.1 |
Affected products
2Patches
Vulnerability mechanics
Generated on May 9, 2026. Inputs: CWE entries + fix-commit diffs from this CVE's patches. Citations validated against bundle.
References
4- github.com/advisories/GHSA-rr8m-29g8-8cgcghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2022-1064ghsaADVISORY
- github.com/forkcms/forkcms/commit/6aca30e10b4181534f73f96d6e2ebeb45ec15069ghsax_refsource_MISCWEB
- huntr.dev/bounties/2f664985-c5fc-485b-b4fc-4c401be2cf40ghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.