MidnightBSD

Advisories for credenceanalytics

CVE-2022-30025

SQL injection in "/Framewrk/Home.jsp" file (POST method) in tCredence Analytics iDEAL Wealth and Funds - 1.0 iallows authenticated remote attackers to inject payload via "v" parameter.

Products Affected

Vendor Product Version
credenceanalytics ideal_-_wealth_and_funds 1.0