CVE-2022-23169 Information

Description

attacker needs to craft a SQL payload. the vulnerable parameter is gentid\ must be authenticated to the admin panel.

Reference

https://www.gov.il/en/departments/faq/cve_advisories