CVE-2022-40354 The v1.0 of the Tours & Travels Management System was found to have a SQL injection vulnerability.
An attacker can inject malicious code to run arbitrary SQL commands. This vulnerability can be exploited by hackers to compromise the system, obtain sensitive information
CVE-2022-40878 Exam Reviewer Management System 1.0 allows an attacker to upload a web-shell php file and achieve RCE.
An attacker can do this by setting up a fake facebook account or by manipulating the system to access the system’s data. By uploading
CVE-2022-40877 Exam Reviewer Management System 1.0 is vulnerable to SQL Injection via the ‘id’ parameter.
The id parameter is usually used to select a specific record when creating a new post. If an attacker inputs ‘;’ or other malicious characters into
CVE-2022-40353 The local file of the Tour & Travels Management System v1.0 was found to be vulnerable to SQL injection.
An attacker can exploit this vulnerability to inject arbitrary SQL queries into the application, causing the backend to crash.
An attacker can exploit this vulnerability
CVE-2022-40352 The tour & travels management system v1.0 had a SQL injection vulnerability through the id parameter.
A person could exploit this vulnerability to execute arbitrary SQL commands with system privileges or cause a denial of service. We assume no risk of
Episode
00:00:00
00:00:00