Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2022-88268
HistorySep 28, 2022 - 12:00 a.m.

Wedding Planner wedding_details.php SQL Injection Vulnerability

2022-09-2800:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
wedding planner project
sql injection
web application
real data
missing validation
external input
sensitive database information

EPSS

0.002

Percentile

54.5%

Wedding Planner is a wedding planner project by pushpam abhishek. Designed to provide users with an easy way to plan their wedding through a web application while using real data, Wedding Planner v1.0 is vulnerable to a SQL injection vulnerability stemming from a missing validation of external input SQL statements in the id parameter in /wedding_details.php. An attacker could exploit the vulnerability to obtain sensitive database information.

EPSS

0.002

Percentile

54.5%

Related for CNVD-2022-88268