3 matches found
CVE-2022-30835
Wedding Management System v1.0 is vulnerable to SQL Injection. via /Wedding-Management/admin/budget.php?bookingid=...
CVE-2022-30835
Wedding Management System v1.0 is vulnerable to SQL Injection. via /Wedding-Management/admin/budget.php?bookingid=...
CVE-2022-30835
The CVE-2022-30835 entry concerns Wedding Management System v1.0, where the parameter booking_id in /Wedding-Management/admin/budget.php is vulnerable to SQL Injection. The root cause, as described across connected records, is lack of input validation/escaping for external input, enabling attacke...