12 matches found
CVE-2026-26709
code-projects Simple Gym Management System v1.0 is vulnerable to SQL Injection in /gym/trainersearch.php...
CVE-2026-26709
code-projects Simple Gym Management System v1.0 is vulnerable to SQL Injection in /gym/trainersearch.php...
CVE-2026-26709
CVE-2026-26709 affects code-projects Simple Gym Management System v1.0. The Simple Gym Management System is vulnerable to SQL Injection in the /gym/trainer_search.php endpoint, caused by insufficient input validation that can manipulate database queries. Impact is described as high confidentialit...
PT-2026-22684
Name of the Vulnerable Software and Affected Versions Simple Gym Management System version 1.0 Description The Simple Gym Management System version 1.0 is susceptible to SQL Injection. This issue affects the /gym/trainer search.php endpoint. The trainer search.php script is vulnerable due to...
CVE-2026-26709
code-projects Simple Gym Management System v1.0 is vulnerable to SQL Injection in /gym/trainersearch.php...
EUVD-2026-9253
code-projects Simple Gym Management System v1.0 is vulnerable to SQL Injection in /gym/trainersearch.php...
CVE-2026-26709
code-projects Simple Gym Management System v1.0 is vulnerable to SQL Injection in /gym/trainersearch.php...
Code-Projects Simple Gym Management System 安全漏洞
Code-Projects Simple Gym Management System is an open-source gym management system developed by Code-Projects. Version 1.0 of the Code-Projects Simple Gym Management System contains a security vulnerability, which stems from an SQL injection vulnerability in the file /gym/trainersearch.php...
CVE-2025-67146
Multiple SQL Injection vulnerabilities exist in AbhishekMali21 GYM-MANAGEMENT-SYSTEM 1.0 via the 'name' parameter in 1 membersearch.php, 2 trainersearch.php, and 3 gymsearch.php, and via the 'id' parameter in 4 paymentsearch.php. An unauthenticated remote attacker can exploit these issues to inje...
PT-2026-2301
Name of the Vulnerable Software and Affected Versions AbhishekMali21 GYM-MANAGEMENT-SYSTEM version 1.0 Description The application contains multiple SQL Injection flaws. These issues are present via the name parameter in the member search.php, trainer search.php, and gym search.php files, and via...
CVE-2025-67146
Multiple SQL Injection vulnerabilities exist in AbhishekMali21 GYM-MANAGEMENT-SYSTEM 1.0 via the 'name' parameter in 1 membersearch.php, 2 trainersearch.php, and 3 gymsearch.php, and via the 'id' parameter in 4 paymentsearch.php. An unauthenticated remote attacker can exploit these issues to inje...
CVE-2025-67146
Multiple SQL Injection vulnerabilities exist in AbhishekMali21 GYM-MANAGEMENT-SYSTEM 1.0 via the 'name' parameter in 1 membersearch.php, 2 trainersearch.php, and 3 gymsearch.php, and via the 'id' parameter in 4 paymentsearch.php. An unauthenticated remote attacker can exploit these issues to inje...