2 matches found
CVE-2022-32405
Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/prisons/viewprison.php:4...
CVE-2022-32405
CVE-2022-32405 affects Prison Management System v1.0. The vulnerability is a SQL injection in the parameter id of /pms/admin/prisons/view_prison.php:4, caused by lack of SQL data filtering/escaping. Consequences described in connected sources include the potential to access or exfiltrate sensitiv...