83 matches found
CVE-2022-36681
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deleteaccount...
CVE-2022-36681
Summary: CVE-2022-36681 affects Simple Task Scheduling System v1.0, with a SQL injection vulnerability in the id parameter of the endpoint /classes/Master.php?f=delete_account. The root cause is an unsafely handled id value leading to SQL injection. The vulnerability is considered high severity (...
CVE-2022-36683
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deletepayment...
CVE-2022-36683
CVE-2022-36683 affects Simple Task Scheduling System v1.0 . It describes a SQL injection vulnerability in the parameter id of /classes/Master.php?f=delete_payment. Root cause: unsanitized input fed into SQL, enabling arbitrary queries. Impact is described as C on confidentiality, integrity, and a...
CVE-2022-36682
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deletestudent...
CVE-2022-36680
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deleteschedule...
CVE-2022-36680
CVE-2022-36680 affects Simple Task Scheduling System v1.0. The vulnerability is a SQL injection in the id parameter of the endpoint /classes/Master.php?f=delete_schedule, enabling potentially unauthorized data access or manipulation. The CVSS v3.1 score is 9.8 (CRITICAL) with network attack vecto...
CVE-2022-36679
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/?page=user/manageuser...
CVE-2022-36678
CVE-2022-36678 affects Simple Task Scheduling System v1.0. A SQL injection vulnerability exists in the id parameter to /classes/Master.php?f=delete_category, allowing potentially arbitrary SQL execution. The NVD entry rates it as CRITICAL (CVSS 3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H). Connected...
CVE-2022-36678
Simple Task Scheduling System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /classes/Master.php?f=deletecategory...
Simple Task Scheduling System SQL注入漏洞
Simple Task Scheduling System is a simple task scheduling system by Carlo Montero Personal Developer. A SQL injection vulnerability exists in Simple Task Scheduling System v1.0, which stems from a security issue with the id parameter in /classes/Master.php?f=deletestudent...
Simple Task Scheduling System SQL注入漏洞
Simple Task Scheduling System is a simple task scheduling system by Carlo Montero Personal Developer. A SQL injection vulnerability exists in Simple Task Scheduling System v1.0, which stems from a security issue with the id parameter in /classes/Master.php?f=deletecategory...
Simple Task Scheduling System SQL注入漏洞
Simple Task Scheduling System is a simple task scheduling system by Carlo Montero Personal Developer. A SQL injection vulnerability exists in Simple Task Scheduling System v1.0, which stems from a security issue with the id parameter in /classes/Master.php?f=deleteaccount...
Simple Task Scheduling System SQL注入漏洞
Simple Task Scheduling System is a simple task scheduling system by Carlo Montero Personal Developer. A SQL injection vulnerability exists in Simple Task Scheduling System v1.0, which stems from a security issue with the id parameter in classes/Master.php?f=deletepayment...
Simple Task Scheduling System sql injection vulnerability
Simple Task Scheduling System, a task scheduling system, is vulnerable to a SQL injection vulnerability in Simple Task Scheduling System version 1.0. An attacker can use this vulnerability to issue SQL commands to the MySQL database via the vulnerable "id" parameter...
CVE-2022-30927
A SQL injection vulnerability exists in Simple Task Scheduling System 1.0 when MySQL is being used as the application database. An attacker can issue SQL commands to the MySQL database through the vulnerable "id" parameter...
CVE-2022-30927
A SQL injection vulnerability exists in Simple Task Scheduling System 1.0 when MySQL is being used as the application database. An attacker can issue SQL commands to the MySQL database through the vulnerable "id" parameter...
Sql injection
A SQL injection vulnerability exists in Simple Task Scheduling System 1.0 when MySQL is being used as the application database. An attacker can issue SQL commands to the MySQL database through the vulnerable "id" parameter...
CVE-2022-30927
A SQL injection vulnerability exists in Simple Task Scheduling System 1.0 when MySQL is being used as the application database. An attacker can issue SQL commands to the MySQL database through the vulnerable "id" parameter...
CVE-2022-30927
CVE-2022-30927 describes a SQL injection vulnerability in the software named “Simple Task Scheduling System 1.0” when using MySQL as the application database. The vulnerability allows an attacker to issue SQL commands through the vulnerable id parameter. The connected documents confirm the affect...