Vulnerabilities for Simple client management system (m project...) - CXSECURITY.COM

Vulnerabilities for
'Simple client management system'

2022-05-12

CVE-2022-29747

CWE-89

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=invoice/manage_invoice&id= // Leak place ---> id.

CVE-2022-29748

CWE-89

Simple Client Management System 1.0 is vulnerable to SQL Injection via \cms\admin?page=client/manage_client&id=.

CVE-2022-29749

CWE-89

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_invoice.

CVE-2022-29750

CWE-89

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_service.

CVE-2022-29751

CWE-89

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_client.

CVE-2022-29979

CWE-89

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_designation.

CVE-2022-29980

CWE-89

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=user/manage_user&id=.

CVE-2022-29981

CWE-89

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Users.php?f=delete.

CVE-2022-29982

CWE-89

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/maintenance/manage_service.php?id=.

CVE-2022-29983

CWE-89

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=invoice/view_invoice&id=.

Copyright 2024, cxsecurity.com