CVE-2022-2688
CVE-2022-2688 affects SourceCodester Expense Management System. The vulnerability resides in the POST Parameter Handler, specifically the fetch_report_credit function in report.php, where the from/to argument is manipulated, leading to a SQL injection. It is exploitable remotely and impacts confi...