Filtered by vendor Badminton Center Management System Project
Subscribe
Total
22 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-32006 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/services/view_service.php?id=.
|
|||||
| CVE-2022-32005 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Badminton Center Management System v1.0 is vulnerable to SQL Injection via bcms/admin/services/manage_service.php?id=.
|
|||||
| CVE-2022-32004 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Badminton Center Management System v1.0 is vulnerable to SQL Injection via bcms/admin/products/manage_product.php?id=.
|
|||||
| CVE-2022-32003 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/courts/view_court.php?id=.
|
|||||
| CVE-2022-32002 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/courts/manage_court.php?id=.
|
|||||
| CVE-2022-32001 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Badminton Center Management System v1.0 is vulnerable to SQL Injection via bcms/admin/products/view_product.php?id=.
|
|||||
| CVE-2022-32000 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=service_transactions/manage_service_transaction&id=.
|
|||||
| CVE-2022-31998 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=service_transactions/view_details&id=.
|
|||||
| CVE-2022-31996 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Badminton Center Management System v1.0 is vulnerable to SQL Injection via bcms/admin/?page=sales/manage_sale&id=.
|
|||||
| CVE-2022-31994 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=sales/view_details&id.
|
|||||
| CVE-2022-31993 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/classes/Master.php?f=delete_service.
|
|||||
| CVE-2022-31992 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=court_rentals/view_court_rental&id=.
|
|||||
| CVE-2022-31991 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Badminton Center Management System v1.0 is vulnerable to SQL Injection via bcms/classes/Master.php?f=delete_court.
|
|||||
| CVE-2022-31990 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Badminton Center Management System v1.0 is vulnerable to SQL Injection via bcms/classes/Master.php?f=delete_product.
|
|||||
| CVE-2022-31989 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=user/manage_user&id=.
|
|||||
| CVE-2022-31988 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Badminton Center Management System v1.0 is vulnerable to SQL Injection via bcms/admin/?page=reports/daily_services_report&date=.
|
|||||
| CVE-2022-31986 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=reports/daily_court_rental_report&date=.
|
|||||
| CVE-2022-31985 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 6.5 MEDIUM | 7.2 HIGH |
|
Badminton Center Management System v1.0 is vulnerable to SQL Injection via /bcms/admin/?page=reports/daily_sales_report&date=.
|
|||||
| CVE-2022-30490 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Badminton Center Management System V1.0 is vulnerable to SQL Injection via parameter 'id' in /bcms/admin/court_rentals/update_status.php.
|
|||||
| CVE-2022-30456 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 3.5 LOW | 5.4 MEDIUM |
|
Badminton Center Management System 1.0 is vulnerable to Cross Site Scripting (XSS) via /bcms/classes/Master.php?f=save_court_rental.
|
|||||
| CVE-2022-30455 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 7.5 HIGH | 9.8 CRITICAL |
|
Badminton Center Management System 1.0 is vulnerable to SQL Injection via /bcms/classes/Master.php?f=delete_court_rental, id.
|
|||||
| CVE-2022-1817 | 1 Badminton Center Management System Project | 1 Badminton Center Management System | 2024-11-21 | 3.5 LOW | 3.5 LOW |
|
A vulnerability, which was classified as problematic, was found in Badminton Center Management System. This affects the userlist module at /bcms/admin/?page=user/list. The manipulation of the argument username with the input </td><img src="" onerror="alert(1)"><td>1 leads to an authenticated cross site scripting. Exploit details have been disclosed to the public.
|
|||||