3 matches found
CVE-2022-25222
Money Transfer Management System Version 1.0 allows an unauthenticated user to inject SQL queries in 'admin/maintenance/managebranch.php' and 'admin/maintenance/managefee.php' via the 'id' parameter...
CVE-2022-25222
creationtimestamp| type| source ---|---|--- 2022-03-23 23:29:00+00:00| seen| https://t.me/cibsecurity/39444...
CVE-2022-25222
Summary: CVE-2022-25222 affects Money Transfer Management System v1.0. An unauthenticated attacker can inject SQL via the id parameter in two admin pages (admin/maintenance/manage_branch.php and admin/maintenance/manage_fee.php). Root cause: Missing validation of external input used in SQL statem...