Wedding Management System Security Vulnerabilities - February
An arbitrary file upload vulnerability in the Upload Photos module of Wedding Management System v1.0 allows attackers to execute arbitrary code via a crafted PHP file.
7.2CVSS
7.2AI Score
0.001EPSS
Wedding Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /Wedding-Management/package_detail.php.
9.8CVSS
9.8AI Score
0.001EPSS
Wedding Management System v1.0 is vulnerable to SQL injection via /Wedding-Management/admin/blog_events_edit.php?id=31.
7.2CVSS
7.3AI Score
0.001EPSS
In Wedding Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of "photos_edit.php" file.
8.8CVSS
8.7AI Score
0.001EPSS
In Wedding Management v1.0, there is an arbitrary file upload vulnerability in the picture upload point of "users_edit.php" file.
8.8CVSS
8.7AI Score
0.001EPSS
In Wedding Management System v1.0, the editing function of the "Services" module in the background management system has an arbitrary file upload vulnerability in the picture upload point of "package_edit.php" file.
8.8CVSS
8.7AI Score
0.001EPSS
In Wedding Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of "users_profile.php" file.
8.8CVSS
8.7AI Score
0.001EPSS
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\blog_events_edit.php.
7.2CVSS
7.3AI Score
0.001EPSS
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\client_edit.php.
7.2CVSS
7.3AI Score
0.001EPSS
Wedding Management System v1.0 is vulnerable to SQL Injection via admin\client_assign.php.
7.2CVSS
7.3AI Score
0.001EPSS
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\package_edit.php.
7.2CVSS
7.3AI Score
0.001EPSS
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\photos_edit.php.
7.2CVSS
7.3AI Score
0.001EPSS
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\users_edit.php.
7.2CVSS
7.3AI Score
0.001EPSS
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\feature_edit.php.
7.2CVSS
7.3AI Score
0.001EPSS
Wedding Management System v1.0 is vulnerable to SQL Injection via Wedding-Management/wedding_details.php.
7.2CVSS
7.3AI Score
0.001EPSS
Wedding Management System v1.0 is vulnerable to SQL Injection via /Wedding-Management/admin/client_assign.php?booking=31&user_id=.
7.2CVSS
7.3AI Score
0.001EPSS
Wedding Management System v1.0 is vulnerable to SQL Injection via /Wedding-Management/admin/client_edit.php?booking=31&user_id=.
7.2CVSS
7.3AI Score
0.001EPSS
Wedding Management System v1.0 is vulnerable to SQL Injection via /Wedding-Management/admin/client_manage_account_details.php?booking_id=31&user_id=
7.2CVSS
7.3AI Score
0.001EPSS
Wedding Management System v1.0 is vulnerable to SQL Injection. via /Wedding-Management/admin/budget.php?booking_id=.
7.2CVSS
7.1AI Score
0.001EPSS
Wedding Management System v1.0 is vulnerable to SQL Injection. via Wedding-Management/admin/select.php.
7.2CVSS
7.1AI Score
0.001EPSS