CVE-2022-31994
Badminton Center Management System v1.0 is affected by a SQL Injection flaw in the admin interface (endpoint: /bcms/admin/?page=sales/view_details&id). The vulnerability stems from unvalidated user input used in SQL statements, enabling unauthorized access to database data. CVSS metrics indicate ...