VYPR
High severity7.5NVD Advisory· Published Nov 21, 2022· Updated Jun 17, 2026

CVE-2022-44786

CVE-2022-44786

Description

An issue was discovered in Appalti & Contratti 9.12.2. The target web applications allow Local File Inclusion in any page relying on the href parameter to specify the JSP page to be rendered. This affects ApriPagina.do POST and GET requests to each application.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.