How severe is CVE-2022-40296?

CVE-2022-40296 has a CVSS v3 score of 9.8 (CRITICAL).

CVE-2022-40296

Name: php_point_of_sale
Author: phppointofsale

9.8CRITICAL

The application was vulnerable to a Server-Side Request Forgery attacks, allowing the backend server to interact with unexpected endpoints, potentially including internal and local services, leading

Publicado: 10/31/2022Atualizado: 5/6/2025

Descrição

The application was vulnerable to a Server-Side Request Forgery attacks, allowing the backend server to interact with unexpected endpoints, potentially including internal and local services, leading to attacks in other downstream systems.

Análise IADesenvolvido por IA

Produtos Afetados

phppointofsalephp_point_of_sale

19.0

Referências

https://www.themissinglink.com.au/security-advisories/cve-2022-40296
Third Party Advisory
https://www.themissinglink.com.au/security-advisories/cve-2022-40296
Third Party Advisory