RSS   Vulnerabilities for
'Online sports complex booking system'
   RSS

2022-05-20
 
CVE-2022-28105

CWE-89
 

 
Online Sports Complex Booking System v1.0 was discovered to contain a blind SQL injection vulnerability via the id parameter in /scbs/view_facility.php.

 
 
CVE-2022-28106

CWE-287
 

 
Online Sports Complex Booking System v1.0 was discovered to allow attackers to take over user accounts via a crafted POST request.

 
2022-05-19
 
CVE-2022-28962

CWE-89
 

 
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/classes/Users.php?f=delete_client.

 
 
CVE-2022-29304

CWE-89
 

 
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /classes/master.php?f=delete_ Facility.

 
 
CVE-2022-29652

CWE-79
 

 
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/classes/Users.php?f=save_client.

 
2022-05-12
 
CVE-2022-29985

CWE-89
 

 
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via \scbs\classes\Master.php?f=delete_category.

 
 
CVE-2022-29986

CWE-89
 

 
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via \scbs\classes\Master.php?f=delete_facility.

 
 
CVE-2022-29987

CWE-89
 

 
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/admin/?page=user/manage_user&id=.

 
 
CVE-2022-29988

CWE-89
 

 
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via \scbs\classes\Master.php?f=delete.

 
 
CVE-2022-29989

CWE-89
 

 
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via \scbs\classes\Master.php?f=delete_booking.

 


Copyright 2024, cxsecurity.com

 

Back to Top