4 matches found
CVE-2022-32400
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/user/manageuser.php:4...
CVE-2022-32400
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/user/manageuser.php:4...
CVE-2022-32400
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/user/manageuser.php:4...
CVE-2022-32400
The CVE-2022-32400 issue affects Prison Management System v1.0, where SQL injection is possible via the id parameter in /pms/admin/user/manage_user.php. The root cause, as described in multiple sources, is a lack of input filtering/escaping, allowing an attacker to inject SQL commands to access o...