RSS   Vulnerabilities for 'Wedding management system'   RSS

2022-06-02
 
CVE-2022-30818

CWE-89
 

 
Wedding Management System v1.0 is vulnerable to SQL injection via /Wedding-Management/admin/blog_events_edit.php?id=31.

 
 
CVE-2022-30819

CWE-434
 

 
In Wedding Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of "photos_edit.php" file.

 
 
CVE-2022-30820

CWE-434
 

 
In Wedding Management v1.0, there is an arbitrary file upload vulnerability in the picture upload point of "users_edit.php" file.

 
 
CVE-2022-30821

CWE-434
 

 
In Wedding Management System v1.0, the editing function of the "Services" module in the background management system has an arbitrary file upload vulnerability in the picture upload point of "package_edit.php" file.

 
 
CVE-2022-30822

CWE-434
 

 
In Wedding Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of "users_profile.php" file.

 
 
CVE-2022-30823

CWE-89
 

 
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\blog_events_edit.php.

 
 
CVE-2022-30825

CWE-89
 

 
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\client_edit.php.

 
 
CVE-2022-30826

CWE-89
 

 
Wedding Management System v1.0 is vulnerable to SQL Injection via admin\client_assign.php.

 
 
CVE-2022-30827

CWE-89
 

 
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\package_edit.php.

 
 
CVE-2022-30828

CWE-89
 

 
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\photos_edit.php.

 


Copyright 2024, cxsecurity.com

 

Back to Top