752 matches found
CVE-2022-28105
Online Sports Complex Booking System v1.0 is affected by a blind SQL injection vulnerability in the id parameter of /scbs/view_facility.php. This flaw, identified in CVE-2022-28105, arises from unsanitized input used in SQL queries, enabling potential disclosure or manipulation of database data. ...
CVE-2022-28962
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/classes/Users.php?f=deleteclient...
CVE-2022-29304
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /classes/master.php?f=delete Facility...
CVE-2022-29652
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/classes/Users.php?f=saveclient...
CVE-2022-29304
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /classes/master.php?f=delete Facility...
CVE-2022-28962
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/classes/Users.php?f=deleteclient...
Sql injection
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /classes/master.php?f=delete Facility...
Sql injection
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/classes/Users.php?f=deleteclient...
Sql injection
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/classes/Users.php?f=saveclient...
CVE-2022-29652
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/classes/Users.php?f=saveclient...
CVE-2022-29652
CVE-2022-29652 affects Online Sports Complex Booking System 1.0, with a SQL Injection flaw in the endpoint /scbs/classes/Users.php?f=save_client. The connected records confirm the issue is a database query manipulation risk due to insufficient input validation/output filtering at that endpoint, p...
CVE-2022-29304
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /classes/master.php?f=delete Facility...
CVE-2022-29304
CVE-2022-29304 affects the Online Sports Complex Booking System 1.0. The connected sources confirm a SQL injection vulnerability in the application, specifically via the parameter in the endpoint path “/classes/master.php?f=delete_ Facility” (untrusted input used in SQL). The vulnerability is rep...
CVE-2022-28962
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/classes/Users.php?f=deleteclient...
CVE-2022-28962
CVE-2022-28962 affects Online Sports Complex Booking System 1.0. The vulnerability is SQL Injection exploitable via /scbs/classes/Users.php?f=delete_client, with documented exploitation potential and high-severity scores (CVSS v3.1: 9.8, CRITICAL; CVSS v2.0: 7.5, HIGH). Connected sources corrobor...
Online Sports Complex Booking System SQL注入漏洞
Online Sports Complex Booking System is an online stadium booking system from Carlo Montero's personal developer. Online Sports Complex Booking System v1.0 is vulnerable to SQL injection, which can be exploited by attackers to execute illegal SQL commands to steal sensitive database data...
Online Sports Complex Booking System SQL注入漏洞
Online Sports Complex Booking System is an online stadium booking system from Carlo Montero's personal developer. Online Sports Complex Booking System is vulnerable to a cross-site scripting vulnerability that originates in /scbs/classes/Users. php?f=saveclient lacks a validation filter for...
Online Sports Complex Booking System SQL注入漏洞
Online Sports Complex Booking System is an online stadium booking system from Carlo Montero's personal developer. Online Sports Complex Booking System v1.0 is vulnerable to SQL injection, which can be exploited by attackers to execute illegal SQL commands to steal sensitive database data...
CVE-2022-28192
NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager nvidia.ko, where it may lead to a use-after-free, which in turn may cause denial of service. This attack is complex to carry out because the attacker needs to have control over freeing some host side resources out of sequenc...
Online Sports Complex Booking System SQL注入漏洞(CNVD-2022-58677)
Online Sports Complex Booking System is an online stadium booking system by Carlo Montero, a personal developer. version 1.0 of Online Sports Complex Booking System is vulnerable to SQL injection, which originates in scbs/classes/ Master.php?f=delete, the id parameter of the post request lacks...