CVE-2022-37773 Information

Description

An authenticated SQL Injection vulnerability in the statistics page (/statistics/retrieve) of Maarch RM 2.8 via the filter parameter allows the complete disclosure of all databases.

Reference

http://maarch.com https://github.com/frame84/vulns/blob/main/MaarchRM/CVE-2022-37773/README.md