CVE-2022-46442

EPSS 0.34% · P57 Updated Apr 11, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2022-46442

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

dedecms <=V5.7.102 is vulnerable to SQL Injection. In sys_ sql_ n query.php there are no restrictions on the sql query.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

DedeCMS SQL注入漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Desdev DedeCMS（织梦内容管理系统）是中国卓卓网络（Desdev）公司的一套基于PHP的开源内容管理系统（CMS）。该系统具有内容发布、内容管理、内容编辑和内容检索等功能。 DedeCMS V5.7.102及以前版本存在安全漏洞，该漏洞源于其sys_ sql_ n query.php文件的操作未对SQL查询做出合理限制允许攻击者实现SQL注入。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2022-46442

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2022-46442

请登录查看更多情报信息。

Same Patch Batch · n/a · 2022-12-27 · 26 CVEs total

CVE-2021-4290	5.5 MEDIUM	DHBW Fallstudie Login passport.js sql injection
CVE-2022-4748	5.5 MEDIUM	FlatPress File Delete panel.mediamanager.file.php doItemActions path traversal
CVE-2022-4772	4.5 MEDIUM	Widoco WidocoUtils.java unZipIt path traversal
CVE-2022-4766	4.3 MEDIUM	dolibarr_project_timesheet Form cross-site request forgery
CVE-2020-36633	4.3 MEDIUM	moodle-block_sitenews block_sitenews.php get_content cross-site request forgery
CVE-2019-25091	3.7 LOW	nsupdate.info CSRF Cookie base.py cookie httponly flag
CVE-2022-4755	3.5 LOW	FlatPress Media Manager Plugin panel.mediamanager.file.php main cross site scripting
CVE-2015-10005	3.5 LOW	markdown-it html_re.js redos
CVE-2018-25049	3.0 LOW	email-existence index.js redos
CVE-2022-4773	2.5 LOW	cloudsync LocalFilesystemConnector.java getItem path traversal
CVE-2022-47968		Heimdal 跨站脚本漏洞
CVE-2022-45963		H3C Firewall 安全漏洞
CVE-2022-45778		Hillstone Networks Firewall 安全漏洞
CVE-2022-45434		Dahua software products 授权问题漏洞
CVE-2022-45433		Dahua software products 授权问题漏洞
CVE-2022-45432		Dahua software products 授权问题漏洞
CVE-2022-45431		Dahua software products 授权问题漏洞
CVE-2022-45430		Dahua software products 授权问题漏洞
CVE-2022-45429		Dahua software products 代码问题漏洞
CVE-2022-45428		Dahua software products 安全漏洞

Showing top 20 of 26 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2022-46442

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2022-46442

I. Basic Information for CVE-2022-46442

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2022-46442

III. Intelligence Information for CVE-2022-46442

Same Patch Batch · n/a · 2022-12-27 · 26 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2022-46442

Leave a comment