CVE-2021-22856

The CGE property management system contains SQL Injection vulnerabilities. Remote attackers can inject SQL commands into the parameters in Cookie and obtain data in the database without privilege. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt