CVE-2022-22980

Description from NVD

A Spring Data MongoDB application is vulnerable to SpEL Injection when using @Query or @Aggregation-annotated query methods with SpEL expressions that contain query parameter placeholders for value binding if the input is not sanitized.

Information Acquisition Date:2022-06-24T14:54Z
CVSS 2.0: 0.0 None CVSS 3.x: 0.0 None

NVD References

 https://tanzu.vmware.com/security/cve-2022-22980
     source:MISC
     tags:

Refer to Information on External Sites

CVE InfomationExploits or more Infomation
mitreEXPLOIT DATABASE
NVD0day.today
vulmon.comgithub
CVE DetailsTwitter
JVN ENG JPN
Reconshell

Software Tag: BIND(3 tweets) Java(3 tweets) VMware(9 tweets) Wordpress(1 tweets)



List of frequently cited URLs

URLNum of Times Referred to
http://twinybots.ch54
https://cvetrends.com54
https://github.com/trganda/CVE-2022-2298012
https://tanzu.vmware.com/security/cve-2022-229808
https://infosecwriteups.com/analyzing-cve-2022-22980-to-dis...7
https://securityboulevard.com/2022/06/update-on-spring-data...4
https://twitter.com/momika233/status/15392393365581045763

▼ Show Information from Twitter(93)


List of frequently cited URLs

URLNum of Times Referred to
twinybots.ch54
cvetrends.com54
github.com12
tanzu.vmware.com8
infosecwriteups.com7
securityboulevard.com4
twitter.com3

▼ Show Information from Twitter(93)


GitHub Search Results: Up to 10
NameURL
trganda/CVE-2022-22980 https://github.com/trganda/CVE-2022-22980
kuron3k0/Spring-Data-Mongodb-Example https://github.com/kuron3k0/Spring-Data-Mongodb-Example
jweny/cve-2022-22980-exp https://github.com/jweny/cve-2022-22980-exp
W01fh4cker/Serein https://github.com/W01fh4cker/Serein
li8u99/Spring-Data-Mongodb-Demo https://github.com/li8u99/Spring-Data-Mongodb-Demo

GitHub Search Results: Up to 10
NameURL
trganda/CVE-2022-22980 github.com
kuron3k0/Spring-Data-Mongodb-Example github.com
jweny/cve-2022-22980-exp github.com
W01fh4cker/Serein github.com
li8u99/Spring-Data-Mongodb-Demo github.com

2022/07/04 Score : 5
Added Har-sia Database : 2022/06/20
Last Modified : 2022/07/04
Highest Scored Date : 2022/06/23
Highest Score : 35