Vulnerabilities > Yimihome > Ywoa > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-08-19 | CVE-2022-36606 | SQL Injection vulnerability in Yimihome Ywoa Ywoa before v6.1 was discovered to contain a SQL injection vulnerability via /oa/setup/checkPool?database. | 9.8 |
| 2022-08-19 | CVE-2022-36605 | SQL Injection vulnerability in Yimihome Ywoa 6.1 Yimioa v6.1 was discovered to contain a SQL injection vulnerability via the orderbyGET parameter. | 9.8 |