CVE-2022-32404
CVE-2022-32404 affects Prison Management System v1.0, with a SQL injection in the id parameter of /pms/admin/inmates/manage_inmate.php. The root cause is unsafely handled user input in the id field, enabling arbitrary SQL execution and potential data disclosure or modification. The vulnerability ...