Critical severity9.8NVD Advisory· Published Nov 21, 2022· Updated Jun 17, 2026
CVE-2022-44785
CVE-2022-44785
Description
An issue was discovered in Appalti & Contratti 9.12.2. The target web applications are subject to multiple SQL Injection vulnerabilities, some of which executable even by unauthenticated users, as demonstrated by the GetListaEnti.do cfamm parameter.
Affected products
2- Appalti & Contratti/Appalti & Contrattidescription
- Range: =9.12.2
Patches
Vulnerability mechanics
References
1- members.backbox.org/maggioli-appalti-contratti-multiple-vulnerabilities/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.