3 matches found
CVE-2022-32403
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/inmates/managerecord.php:4...
CVE-2022-32403
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/inmates/managerecord.php:4...
CVE-2022-32403
CVE-2022-32403 affects Prison Management System v1.0. The vulnerability is a SQL injection in the /pms/admin/inmates/manage_record.php endpoint, triggered by the id parameter due to unsafely assembled SQL queries. The issue enables access to or manipulation of database data and is described with ...