2 matches found
CVE-2022-32000
Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=servicetransactions/manageservicetransaction=...
CVE-2022-32000
CVE-2022-32000 affects Badminton Center Management System v1.0, where the _bcms/admin/?page=service_transactions/manage_service_transaction&id= parameter is vulnerable to SQL Injection due to unvalidated externally entered SQL statements in the service_transaction function. This can enable an att...