3 matches found
CVE-2022-26293
Online Project Time Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in the function saveemployee at /ptms/classes/Users.php...
Online Project Time Management v1.0 SQL injection Vulnerability
Title: Online Project Time Management v1.0 SQLi Author: nu11secur1ty Vendor: https://www.sourcecodester.com/users/tips23 Software: https://www.sourcecodester.com/php/15136/online-project-time-management-system-phpoop-free-source-code.html Reference:...
CVE-2022-26293
CVE-2022-26293 affects Online Project Time Management System v1.0. The vulnerability is a SQL injection in the id parameter of the save_employee function in /ptms/classes/Users.php, allowing an attacker to manipulate SQL queries. Multiple connected sources confirm the issue and outline the vulner...