SQL Injection Vulnerability in Roothub 2.6.0 Topics Counting Feature

SQL Injection Vulnerability in Roothub 2.6.0 Topics Counting Feature

CVE-2022-27472 · CRITICAL Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

SQL injection vulnerability in Topics Counting feature of Roothub 2.6.0 allows unauthorized attackers to execute arbitrary SQL commands via the "s" parameter remotely.

Learn more about our Web Application Penetration Testing UK.