Novel-Plus v3.6.1 SQLi via keyword param in BookServiceImpl
CVE-2022-35121 Published on August 17, 2022

Novel-Plus v3.6.1 was discovered to contain a SQL injection vulnerability via the keyword parameter at /service/impl/BookServiceImpl.java.

NVD

Products Associated with CVE-2022-35121

stack.watch emails you whenever new vulnerabilities are published in Novel Plusproject Novel Plus or Xxyopen Novel Plus. Just hit a watch button to start following.

Novel Plusproject Novel Plus

Xxyopen Novel Plus

Exploit Probability

EPSS

0.25%

Percentile

48.00%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

Novel-Plus v3.6.1 SQLi via keyword param in BookServiceImplCVE-2022-35121 Published on August 17, 2022

Products Associated with CVE-2022-35121

Exploit Probability

Novel-Plus v3.6.1 SQLi via keyword param in BookServiceImpl
CVE-2022-35121 Published on August 17, 2022