High severity7.5NVD Advisory· Published Nov 21, 2022· Updated Jun 17, 2026
CVE-2022-44786
CVE-2022-44786
Description
An issue was discovered in Appalti & Contratti 9.12.2. The target web applications allow Local File Inclusion in any page relying on the href parameter to specify the JSP page to be rendered. This affects ApriPagina.do POST and GET requests to each application.
Affected products
2- Appalti & Contratti/Appalti & Contrattidescription
- Range: <9.12.2
Patches
Vulnerability mechanics
References
1- members.backbox.org/maggioli-appalti-contratti-multiple-vulnerabilities/nvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.