2 matches found
CVE-2022-30000
Insurance Management System 1.0 is vulnerable to SQL Injection via /insurance/editPayment.php?reciptno=...
CVE-2022-30000
CVE-2022-30000 affects Insurance Management System 1.0. A SQL injection flaw exists in the /insurance/editPayment.php endpoint, via the recipt_no parameter, allowing manipulation of database queries. Root cause is improper input handling for this parameter. Exploitation details are not provided i...