What is CVE-2022-40032?

CVE-2022-40032 is a vulnerability in N/a. Published 2023-02-17.

Is CVE-2022-40032 known to be exploited?

6 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2022-40032

SQL Injection vulnerability in Simple Task Managing System version 1.0 in login.php in 'username' and 'password' parameters, allows attackers to execute arbitrary code and gain sensitive information.

EPSS: 0.640 (98.5th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

h4md153v63n/CVE-2022-40032_Simple-Task-Managing-System-V1.0-SQL-Injection-Vulnerability-Unauthenticated
h4md153v63n/CVE-2022-40032_
h4md153v63n/CVEs
h4md153v63n/h4md153v63n
l0928h/kate
nomi-sec/PoC-in-GitHub

References

www.sourcecodester.com/php/15624/simple-task-managing-system-php-mysqli-free-so…
www.sourcecodester.com/sites/default/files/download/razormist/Task Managing Sys…
github.com/h4md153v63n/CVE-2022-40032_Simple-Task-Managing-System-V1.0-SQL-Inje…
packetstormsecurity.com/files/171739/Simple-Task-Managing-System-1.0-SQL-Inject…

Frequently asked questions

What is CVE-2022-40032?: CVE-2022-40032 is a vulnerability in N/a. Published 2023-02-17.
Is CVE-2022-40032 known to be exploited?: 6 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.