How severe is CVE-2022-40296?

CVE-2022-40296 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2022-40296

Name: php_point_of_sale
Author: phppointofsale

9.8CRITICAL

The application was vulnerable to a Server-Side Request Forgery attacks, allowing the backend server to interact with unexpected endpoints, potentially including internal and local services, leading

Veröffentlicht: 10/31/2022Aktualisiert: 5/6/2025

Beschreibung

The application was vulnerable to a Server-Side Request Forgery attacks, allowing the backend server to interact with unexpected endpoints, potentially including internal and local services, leading to attacks in other downstream systems.

KI-AnalyseKI-gestützt

Betroffene Produkte

phppointofsalephp_point_of_sale

19.0

Referenzen

https://www.themissinglink.com.au/security-advisories/cve-2022-40296
Third Party Advisory
https://www.themissinglink.com.au/security-advisories/cve-2022-40296
Third Party Advisory