CVE-2022-24240 Information

Description

ACEweb Online Portal 3.5.065 was discovered to contain a SQL injection vulnerability via the criteria parameter in showschedule.awp.

Reference

http://aceware.com http://aceweb.com https://www.aceware.com/forum/viewtopic.php?f=7&t=481