CVE-2022-4454

Source
https://cve.org/CVERecord?id=CVE-2022-4454
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-4454.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2022-4454
Published
2022-12-13T00:00:00Z
Modified
2026-07-09T06:01:50.371671Z
Severity
  • 5.5 (Medium) CVSS_V3 - CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L CVSS Calculator
Summary
m0ver bible-online Search search.java query sql injection
Details

A vulnerability, which was classified as critical, has been found in m0ver bible-online. Affected by this issue is the function query of the file src/main/java/custom/application/search.java of the component Search Handler. The manipulation leads to sql injection. The name of the patch is 6ef0aabfb2d4ccd53fcaa9707781303af357410e. It is recommended to apply a patch to fix this issue. The identifier of this vulnerability is VDB-215444.

Database specific
{
    "osv_generated_from": "https://github.com/CVEProject/cvelistV5/tree/main/cves/2022/4xxx/CVE-2022-4454.json",
    "cna_assigner": "VulDB",
    "cwe_ids": [
        "CWE-707"
    ]
}
References

Affected packages

Git / github.com/m0ver/bible-online

Affected ranges

Type
GIT
Repo
https://github.com/m0ver/bible-online
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
Database specific
{
    "source": "REFERENCES"
}

Database specific

vanir_signatures
[
    {
        "digest": {
            "threshold": 0.9,
            "line_hashes": [
                "72036210281030871306549445505698907282",
                "305764015635161726284387573427511291880",
                "297312619738071050096781170823470532404",
                "74008249493362313697202052455847907201",
                "145472379315042123500500872829792640806",
                "156093109324605011594002344103977561429",
                "15966005937095407703651686541925853189",
                "100912752860403212182369176996459686162",
                "229094088592832826261099790251096923364",
                "70489971329945982628193206761696064942",
                "132102833435779782601981872390009385422",
                "252693543995311382592076636351386646403",
                "23507938490760529958756624106835877739",
                "7941564897410166386688584194360550937",
                "161341590080032206694354926069967312907",
                "134672120965560371391440970963235869466",
                "74071109319944485281874041498593134474",
                "258658788489892294186646494950653470313",
                "74350662083616605600860712262676437675",
                "177717216398064218485663379022984509735",
                "30034060333729234719637368701496988969",
                "157797878690116442707000636206558660198",
                "72321039175560668520905451551419493398",
                "313511880770993820289134447516225187594",
                "146959252923129889008885026213016052946",
                "60660142780820194273139136856045164341",
                "51922359952576564207239694440585933734",
                "235384370540613692315746107879679304891",
                "265312695301737783976043148763422999356",
                "45357442980627785749257232868638027875",
                "167244196694898975553303812804457646372",
                "311132877075692598237512170582427649769",
                "257022383310909067734697524586385342832",
                "316572070585851385905407263690009451258",
                "200929674125213119904183748062008190860",
                "166457998449874165559592321071001855069",
                "70720577577499990883655490023348507129",
                "73048002151662985210901144468969023495",
                "17931430868409180137519144490420427598",
                "268359421239167060762768871823257985436",
                "163557649818390012690541728178556494012",
                "22321792510342706326319318854040477179"
            ]
        },
        "target": {
            "file": "src/main/java/custom/application/search.java"
        },
        "id": "CVE-2022-4454-57ac1596",
        "signature_version": "v1",
        "signature_type": "Line",
        "source": "https://github.com/m0ver/bible-online/commit/6ef0aabfb2d4ccd53fcaa9707781303af357410e",
        "deprecated": false
    },
    {
        "digest": {
            "function_hash": "44174776350757260551893915891002009138",
            "length": 6664.0
        },
        "target": {
            "function": "query",
            "file": "src/main/java/custom/application/search.java"
        },
        "id": "CVE-2022-4454-f273d28f",
        "signature_version": "v1",
        "signature_type": "Function",
        "source": "https://github.com/m0ver/bible-online/commit/6ef0aabfb2d4ccd53fcaa9707781303af357410e",
        "deprecated": false
    }
]
source
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2022-4454.json"
vanir_signatures_modified
"2026-07-09T06:01:50Z"