Vulnerabilities > Bpcbt > Smartvista Front END > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-09-13 | CVE-2022-38616 | SQL Injection vulnerability in Bpcbt Smartvista Front-End 2.2.22 SmartVista SVFE2 v2.2.22 was discovered to contain a SQL injection vulnerability via the UserForm:j_id90 parameter at /feegroups/tgrt_group.jsf. | 8.8 |
| 2022-09-09 | CVE-2022-38615 | SQL Injection vulnerability in Bpcbt Smartvista Front-End 2.2.22 SmartVista SVFE2 v2.2.22 was discovered to contain multiple SQL injection vulnerabilities via the UserForm:j_id88, UserForm:j_id90, and UserForm:j_id92 parameters at /SVFE2/pages/feegroups/service_group.jsf. | 8.8 |