CRITICAL
Parantez Teknoloji
CVE published 2022-09-21
CVE-2022-0495
An unauthenticated SQL injection vulnerability in KOHA Library Automation System versions prior to 19.05.03.01 allows remote attackers to execute arbitrary SQL commands without authentication. The vulnerability was publicly disclosed on September 21, 2022, with a critical CVSS 3.1 score of 9.4 (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L). The Turkish National Cyber Security Incident Response Center (USOM) issued [truncated]