Gym Management System Security Vulnerabilities and Issues — Gym Management System CVE List

Lucene search

CodezipsGym Management System

17 matches found

CVE•added 2025/04/01 6:15 p.m.•69 views

CVE-2025-29208

CodeZips Gym Management System v1.0 is vulnerable to SQL injection in the name parameter within /dashboard/admin/deleteroutine.php.

6.5CVSS8.1AI score0.00031EPSS

Web

CVE•added 2025/02/17 7:15 a.m.•61 views

CVE-2025-1380

A vulnerability was found in Codezips Gym Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /dashboard/admin/del_plan.php. The manipulation of the argument name leads to sql injection. The attack may be launched remotely. The exploit ...

9.8CVSS7.4AI score0.00044EPSS

Web

CVE•added 2025/01/05 10:15 p.m.•59 views

CVE-2025-0231

A vulnerability has been found in Codezips Gym Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /dashboard/admin/submit_payments.php. The manipulation of the argument m_id leads to sql injection. The attack can be launched remo...

8.8CVSS6.8AI score0.00089EPSS

Web

CVE•added 2025/02/12 7:15 a.m.•51 views

CVE-2025-1183

A vulnerability has been found in CodeZips Gym Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /dashboard/admin/more-userprofile.php. The manipulation of the argument login_id leads to sql injection. The attack can be launched...

9.8CVSS6.8AI score0.00044EPSS

Web

CVE•added 2025/03/04 11:15 p.m.•50 views

CVE-2025-1959

A vulnerability, which was classified as critical, was found in Codezips Gym Management System 1.0. Affected is an unknown function of the file /change_s_pwd.php. The manipulation of the argument login_id/login_key leads to sql injection. It is possible to launch the attack remotely. The exploit ha...

9.8CVSS7.5AI score0.00046EPSS

Web

CVE•added 2025/03/27 1:15 p.m.•49 views

CVE-2025-2847

A vulnerability, which was classified as critical, has been found in Codezips Gym Management System 1.0. This issue affects some unknown processing of the file /dashboard/admin/over_month.php. The manipulation of the argument mm leads to sql injection. The attack may be initiated remotely. The expl...

8.8CVSS6.8AI score0.0003EPSS

Web

CVE•added 2025/02/12 9:15 a.m.•48 views

CVE-2025-1188

A vulnerability, which was classified as critical, has been found in Codezips Gym Management System 1.0. Affected by this issue is some unknown functionality of the file /dashboard/admin/updateroutine.php. The manipulation of the argument tid leads to sql injection. The attack may be launched remot...

9.8CVSS6.7AI score0.00049EPSS

Web

CVE•added 2025/03/03 8:15 a.m.•47 views

CVE-2025-1856

A vulnerability was found in Codezips Gym Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /dashboard/admin/gen_invoice.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exp...

9.8CVSS7.4AI score0.00048EPSS

Web

CVE•added 2025/01/17 10:15 p.m.•45 views

CVE-2025-0541

A vulnerability was found in Codezips Gym Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /dashboard/admin/edit_member.php. The manipulation of the argument name leads to sql injection. The attack may be initiated remotely. The exploit has be...

9.8CVSS6.9AI score0.00076EPSS

Web

CVE•added 2025/01/29 2:15 a.m.•44 views

CVE-2025-0803

A vulnerability, which was classified as critical, has been found in Codezips Gym Management System 1.0. Affected by this issue is some unknown functionality of the file /dashboard/admin/submit_plan_new.php. The manipulation of the argument planid leads to sql injection. The attack may be launched ...

9.8CVSS7.5AI score0.00027EPSS

Web

CVE•added 2025/01/30 9:15 p.m.•44 views

CVE-2025-0880

A vulnerability was found in Codezips Gym Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /dashboard/admin/updateplan.php. The manipulation of the argument planid leads to sql injection. The attack may be initiated remotely. The exploit has b...

9.8CVSS6.8AI score0.00039EPSS

Web

CVE•added 2025/01/17 6:15 p.m.•43 views

CVE-2025-0532

A vulnerability was found in Codezips Gym Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /dashboard/admin/new_submit.php. The manipulation of the argument m_id leads to sql injection. It is possible to launch the attack remotely. The exploit h...

9.8CVSS6.9AI score0.00076EPSS

Web

CVE•added 2025/01/17 7:15 p.m.•43 views

CVE-2025-0535

A vulnerability classified as critical has been found in Codezips Gym Management System 1.0. This affects an unknown part of the file /dashboard/admin/edit_mem_submit.php. The manipulation of the argument uid leads to sql injection. It is possible to initiate the attack remotely. The exploit has be...

9.8CVSS7.7AI score0.00076EPSS

Web

CVE•added 2025/01/19 2:15 a.m.•40 views

CVE-2025-0562

A vulnerability was found in Codezips Gym Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /dashboard/admin/health_status_entry.php. The manipulation of the argument usrid leads to sql injection. The attack may be initiated remotely. The explo...

9.8CVSS6.8AI score0.00086EPSS

Web

CVE•added 2025/01/30 9:15 p.m.•40 views

CVE-2025-0881

A vulnerability was found in Codezips Gym Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /dashboard/admin/saveroutine.php. The manipulation of the argument rname leads to sql injection. It is possible to launch the attack remotely. The exploit...

9.8CVSS6.8AI score0.00038EPSS

Web

CVE•added 2025/03/03 7:15 a.m.•38 views

CVE-2025-1854

A vulnerability was found in Codezips Gym Management System 1.0. It has been classified as critical. Affected is an unknown function of the file /dashboard/admin/del_member.php. The manipulation of the argument name leads to sql injection. It is possible to launch the attack remotely. The exploit h...

8.8CVSS7.4AI score0.00044EPSS

Web

CVE•added 2025/02/12 3:15 p.m.•36 views

CVE-2025-1206

A vulnerability was found in Codezips Gym Management System 1.0. It has been classified as critical. This affects an unknown part of the file /dashboard/admin/viewdetailroutine.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely. The explo...

8.8CVSS6.8AI score0.00047EPSS

Web