RSS   Vulnerabilities for
'Car driving school management system'
   RSS

2022-04-21
 
CVE-2022-28412

CWE-89
 

 
Car Driving School Managment System v1.0 was discovered to contain a SQL injection vulnerability via /cdsms/classes/Master.php?f=delete_package.

 
 
CVE-2022-28413

CWE-89
 

 
Car Driving School Management System v1.0 was discovered to contain a SQL injection vulnerability via /cdsms/classes/Master.php?f=delete_enrollment.

 
2022-02-28
 
CVE-2022-24571

CWE-89
 

 
Car Driving School Management System v1.0 is affected by SQL injection in the login page. An attacker can use simple SQL login injection payload to get admin access.

 
 
CVE-2022-24572

CWE-79
 

 
Car Driving School Management System v1.0 is affected by Cross Site Scripting (XSS) in the User Enrollment Form (Username Field). To exploit this Vulnerability, an admin views the registered user details.

 


Copyright 2024, cxsecurity.com

 

Back to Top