CVE-2022-36637 The Garage Management System v1.0 had a XSS vulnerability via the brand_name parameter.
An attacker can inject malicious code into the database to steal database credentials, reveal sensitive information, or deploy a malicious plugin to the website. In
CVE-2022-36609 The patient management system v1.0 had a SQL injection vulnerability via the id parameter.
An attacker can exploit the SQL injection flaw to execute arbitrary SQL commands with the privileges of the system user. In addition to the SQL
CVE-2022-36636 The Garage Management System v1.0 SQL injection vulnerability was found at /print.php.
An attacker can inject SQL queries, run arbitrary PHP code, or obtain sensitive information by using the id parameter as an access token. The updated
CVE-2022-36594 Mapper v4.0.0 to v4.2.0 had a SQL injection vulnerability.
A successful exploit could cause denial-of-service condition or install malicious code on the application server. Mapper v4.0.0 to v4.2.0 was discovered
CVE-2022-36759 An SQL injection was found in the /dishes.php?res_id= component of the food ordering system v1.0.
This allowed for remote attackers to execute arbitrary SQL commands or cause data leakage by running arbitrary queries. This issue was resolved by properly filtering
Episode
00:00:00
00:00:00