Vulnerabilities

CVE-2026-22197 - GestSup <= 3.2.56 multiple sql injections in asset list

2026-01-09 0 views admin
CVE-2026-22197 - GestSup <= 3.2.56 multiple sql injections in asset list

CVE ID : CVE-2026-22197 Published : Jan. 9, 2026, 4:18 p.m. | 1 hour, 5 minutes ago Description : GestSup versions up to and including 3.2.56 contain multiple SQL injection vulnerabilities in the asset list functionality. Multiple request parameters used to filter, search, or sort assets are incorporated into SQL queries without sufficient neutralization, allowing an authenticated attacker to manipulate database queries. Successful exploitation can result in unauthorized access to or modification of database contents depending on database privileges. Severity: 7.5 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...

CVE Details

Severity
HIGH
Published
Jan. 9, 2026
Impact: SQL injection

Source: Telegram CVE Monitor

🏷️ Tags

cvevulnerabilitysecuritycybersecuritycve-2026-22197high

More from Vulnerabilities

Latest: CVE-2025-15505 - Luxul XWR-600 Web Administration cross site scripting

Latest: CVE-2025-15505 - Luxul XWR-600 Web Administration cross site scripting

2026-01-11 0
Report: CVE-2025-13393 - Featured Image from URL (FIFU) <= 5.3.1 - authenticated (contributor+) server-si...

Report: CVE-2025-13393 - Featured Image from URL (FIFU) <= 5.3.1 - authenticated (contributor+) server-si...

2026-01-10 0
CVE-2025-12379 - Shortcodes and extra features for Phlox theme <= 2.17.13 - authenticated (contri

CVE-2025-12379 - Shortcodes and extra features for Phlox theme <= 2.17.13 - authenticated (contri

2026-01-10 0
CVE-2026-0822 - quickjs-ng quickjs quickjs.c js_typed_array_sort heap-based overflow

CVE-2026-0822 - quickjs-ng quickjs quickjs.c js_typed_array_sort heap-based overflow

2026-01-10 0

Trending

1

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

2025-10-27 • 189 views
2

CVE-2025-43939: Dell Unity OS Command Injection (High)

2025-10-30 • 148 views
3

Google disputes false claims of massive Gmail data breach

2025-10-30 • 130 views
4

Microsoft: DNS outage impacts Azure and Microsoft 365 services

2025-10-30 • 88 views
5

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting

2025-11-25 • 81 views