Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Online_sports_complex_booking_system
(Online_sports_complex_booking_system_project)Repositories |
Unknown: This might be proprietary software. |
#Vulnerabilities | 17 |
Date | Id | Summary | Products | Score | Patch | Annotated |
---|---|---|---|---|---|---|
2022-05-12 | CVE-2022-29990 | Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/admin/categories/view_category.php?id=. | Online_sports_complex_booking_system | 9.8 | ||
2022-05-12 | CVE-2022-29992 | Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/admin/categories/manage_category.php?id=. | Online_sports_complex_booking_system | 9.8 | ||
2022-05-12 | CVE-2022-29993 | Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/admin/bookings/view_booking.php?id=. | Online_sports_complex_booking_system | 9.8 | ||
2022-05-12 | CVE-2022-29994 | Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/admin/?page=facilities/manage_facility&id=. | Online_sports_complex_booking_system | 9.8 | ||
2022-05-12 | CVE-2022-29995 | Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/admin/?page=clients/manage_client&id=. | Online_sports_complex_booking_system | 9.8 | ||
2022-04-25 | CVE-2022-28093 | SCBS Online Sports Venue Reservation System v1.0 was discovered to contain a local file inclusion vulnerability which allow attackers to execute arbitrary code via a crafted PHP file. | Online_sports_complex_booking_system | 9.8 | ||
2022-04-25 | CVE-2022-28094 | SCBS Online Sports Venue Reservation System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the fid parameter at booking.php. | Online_sports_complex_booking_system | 6.1 |