Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Online_sports_complex_booking_system
(Online_sports_complex_booking_system_project)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 17 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-05-19 | CVE-2022-28962 | Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/classes/Users.php?f=delete_client. | Online_sports_complex_booking_system | 9.8 | ||
| 2022-05-19 | CVE-2022-29304 | Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /classes/master.php?f=delete_ Facility. | Online_sports_complex_booking_system | 8.8 | ||
| 2022-05-19 | CVE-2022-29652 | Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/classes/Users.php?f=save_client. | Online_sports_complex_booking_system | 6.1 | ||
| 2022-05-20 | CVE-2022-28105 | Online Sports Complex Booking System v1.0 was discovered to contain a blind SQL injection vulnerability via the id parameter in /scbs/view_facility.php. | Online_sports_complex_booking_system | 9.8 | ||
| 2022-05-20 | CVE-2022-28106 | Online Sports Complex Booking System v1.0 was discovered to allow attackers to take over user accounts via a crafted POST request. | Online_sports_complex_booking_system | 9.8 | ||
| 2022-05-12 | CVE-2022-29985 | Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via \scbs\classes\Master.php?f=delete_category. | Online_sports_complex_booking_system | 9.8 | ||
| 2022-05-12 | CVE-2022-29986 | Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via \scbs\classes\Master.php?f=delete_facility. | Online_sports_complex_booking_system | 9.8 | ||
| 2022-05-12 | CVE-2022-29987 | Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/admin/?page=user/manage_user&id=. | Online_sports_complex_booking_system | 9.8 | ||
| 2022-05-12 | CVE-2022-29988 | Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via \scbs\classes\Master.php?f=delete. | Online_sports_complex_booking_system | 9.8 | ||
| 2022-05-12 | CVE-2022-29989 | Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via \scbs\classes\Master.php?f=delete_booking. | Online_sports_complex_booking_system | 9.8 |