CVE-2022-3997EPSS p27.3%
CVE-2022-3997CVE-2022-3997
scm_project / scm
Description
A vulnerability, which was classified as critical, has been found in MonikaBrzica scm. Affected by this issue is some unknown functionality of the file upis_u_bazu.php. The manipulation of the argument email/lozinka/ime/id leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. VDB-213698 is the identifier assigned to this vulnerability.
Scoring
| CVSS | 6.3 () |
| Vector | CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L |
| EPSS | 0.36% probability of exploitation · percentile 27.3% · 2026-06-19T12:03:05Z |
| Last modified | 2026-06-17 |