Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Prison_management_system
(Prison_management_system_project)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 20 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2022-06-24 | CVE-2022-32397 | Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/visits/view_visit.php:4 | Prison_management_system | 8.8 | ||
| 2022-06-24 | CVE-2022-32398 | Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/cells/manage_cell.php:4 | Prison_management_system | 8.8 | ||
| 2022-06-24 | CVE-2022-32399 | Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/crimes/view_crime.php:4 | Prison_management_system | 8.8 | ||
| 2022-06-24 | CVE-2022-32400 | Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/user/manage_user.php:4. | Prison_management_system | 7.2 | ||
| 2022-06-24 | CVE-2022-32401 | Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/inmates/manage_privilege.php:4 | Prison_management_system | 8.8 | ||
| 2022-06-24 | CVE-2022-32402 | Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/prisons/manage_prison.php:4 | Prison_management_system | 8.8 | ||
| 2022-06-24 | CVE-2022-32403 | Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/inmates/manage_record.php:4 | Prison_management_system | 8.8 | ||
| 2022-06-24 | CVE-2022-32404 | Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/inmates/manage_inmate.php:3 | Prison_management_system | 8.8 | ||
| 2022-06-24 | CVE-2022-32405 | Prison Management System v1.0 was discovered to contain a SQL injection vulnerability via the 'id' parameter at /pms/admin/prisons/view_prison.php:4 | Prison_management_system | 8.8 | ||
| 2024-08-15 | CVE-2024-7813 | A vulnerability, which was classified as problematic, has been found in SourceCodester Prison Management System 1.0. This issue affects some unknown processing of the file /uploadImage/Profile/ of the component Profile Image Handler. The manipulation leads to insufficiently protected credentials. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. | Prison_management_system | 7.5 |