Simple Client Management System Security Vulnerabilities and Issues — Simple Client Management System CVE List

Lucene search

Simple Client Management System ProjectSimple Client Management System

17 matches found

CVE•added 2022/03/21 11:15 p.m.•81 views

CVE-2022-26284

Simple Client Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in the manage_client endpoint. This vulnerability allows attackers to dump the application's database via crafted HTTP requests.

9.8CVSS9.6AI score0.03044EPSS

CVE•added 2022/05/12 3:15 p.m.•77 views

CVE-2022-29748

Simple Client Management System 1.0 is vulnerable to SQL Injection via \cms\admin?page=client/manage_client&id=.

9.8CVSS9.8AI score0.00517EPSS

CVE•added 2022/03/21 11:15 p.m.•74 views

CVE-2022-26285

Simple Subscription Website v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in the apply endpoint. This vulnerability allows attackers to dump the application's database via crafted HTTP requests.

9.8CVSS9.6AI score0.03044EPSS

CVE•added 2022/03/31 7:15 p.m.•73 views

CVE-2021-43484

A Remote Code Execution (RCE) vulnerability exists in Simple Client Management System 1.0 in create.php due to the failure to validate the extension of the file being sent in a request.

9.8CVSS9.5AI score0.12708EPSS

CVE•added 2022/05/12 3:15 p.m.•68 views

CVE-2022-29750

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_service.

9.8CVSS9.8AI score0.00517EPSS

CVE•added 2022/05/12 3:15 p.m.•67 views

CVE-2022-29747

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=invoice/manage_invoice&id= // Leak place ---> id.

9.8CVSS9.8AI score0.00517EPSS

CVE•added 2022/05/12 3:15 p.m.•67 views

CVE-2022-29980

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=user/manage_user&id=.

9.8CVSS9.8AI score0.00517EPSS

CVE•added 2022/05/12 3:15 p.m.•64 views

CVE-2022-29751

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_client.

9.8CVSS9.8AI score0.00517EPSS

CVE•added 2022/05/12 3:15 p.m.•64 views

CVE-2022-29983

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=invoice/view_invoice&id=.

9.8CVSS9.8AI score0.00517EPSS

CVE•added 2022/05/12 3:15 p.m.•62 views

CVE-2022-29749

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_invoice.

9.8CVSS9.8AI score0.00517EPSS

CVE•added 2022/05/12 3:15 p.m.•56 views

CVE-2022-29979

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_designation.

9.8CVSS9.8AI score0.00517EPSS

CVE•added 2022/03/31 5:15 p.m.•55 views

CVE-2021-43506

An SQL Injection vulnerability exists in Sourcecodester Simple Client Management System 1.0 via the password parameter in Login.php.

9.8CVSS9.9AI score0.00517EPSS

CVE•added 2022/05/12 3:15 p.m.•55 views

CVE-2022-29981

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Users.php?f=delete.

9.8CVSS9.8AI score0.00517EPSS

CVE•added 2022/05/12 3:15 p.m.•53 views

CVE-2022-29984

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=client/view_client&id=.

9.8CVSS9.8AI score0.00517EPSS

CVE•added 2022/05/12 3:15 p.m.•52 views

CVE-2022-29982

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/maintenance/manage_service.php?id=.

9.8CVSS9.8AI score0.00517EPSS

CVE•added 2022/02/01 2:15 p.m.•40 views

CVE-2021-43509

SQL Injection vulnerability exists in Sourcecodester Simple Client Management System 1.0 via the id parameter in view-service.php.

9.8CVSS9.8AI score0.00517EPSS

CVE•added 2022/02/01 2:15 p.m.•39 views

CVE-2021-43510

SQL Injection vulnerability exists in Sourcecodester Simple Client Management System 1.0 via the username field in login.php.

9.8CVSS9.8AI score0.67767EPSS