3 matches found
CVE-2022-31989
Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=user/manageuser=...
CVE-2022-31989
Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=user/manageuser&id=...
CVE-2022-31989
CVE-2022-31989 affects Badminton Center Management System v1.0. The vulnerability is a SQL injection in /bcms/admin/?page=user/manage_user&id= due to a lack of validation of external SQL statements in that parameter. Root cause: unsafely incorporated user input into SQL. Impact per sources: confi...