CRITICAL
Kayrasoft
CVE published 2022-09-20
CVE-2022-2177
A critical unauthenticated SQL injection vulnerability in Kayrasoft product versions prior to 2 allows remote attackers to execute arbitrary SQL commands without authentication. The vulnerability was published on September 20, 2022, and carries a CVSS 3.1 score of 9.4 (Critical). The issue is resolved in version 2.