2 matches found
CVE-2022-31996
Badminton Center Management System v1.0 is vulnerable to SQL Injection via bcms/admin/?page=sales/managesale=...
CVE-2022-31996
CVE-2022-31996 affects Badminton Center Management System v1.0. It is vulnerable to SQL Injection via bcms/admin/?page=sales/manage_sale&id=, caused by lack of validation of external SQL statements on that parameter. Documented impacts include high/confidentiality, integrity, and availability con...