What the vulnerability does
01Description
attacker needs to craft a SQL payload. the vulnerable parameter is "agentid" must be authenticated to the admin panel.
CVE-2022-23169
MEDIUM
CVE-2022-23169: Amodat - Mobile Application Gateway SQL Injection (SQLi)
CVSS base score
5.9/10
CVSS vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Key dates
02Disclosure timeline
June 13, 2022
CVE published
September 17, 2024
Record updated
External resources
03References
Related vulnerabilities
04Related CVE
CVE-2025-2106 Arielbrailovsky-Viralad <= 1.0.8 - Unauthenticated SQL Injection
CVE-2024-5051 SourceCodester Gas Agency Management System edituser.php sql injection
CVE-2023-5663 News Announcement Scroll <= 9.0.0 - Authenticated (Contributor+) SQL Injection via Shortcode
CVE-2025-6962 Campcodes Employee Management System myprofileup.php sql injection
CVE-2026-22195 GestSup < 3.2.60 SQL Injection in Search Bar
