Vulnerabilities > Adrianmercurio > GYM Management System > 1.0

DATE	CVE	VULNERABILITY TITLE	RISK
2024-07-10	CVE-2024-6652	Unspecified vulnerability in Adrianmercurio GYM Management System 1.0 A vulnerability was found in itsourcecode Gym Management System 1.0. network low complexity adrianmercurio	8.8
2020-12-02	CVE-2020-29288	SQL Injection vulnerability in Adrianmercurio GYM Management System 1.0 An SQL injection vulnerability was discovered in Gym Management System In manage_user.php file, GET parameter 'id' is vulnerable. network low complexity adrianmercurio CWE-89 critical	9.8
2020-11-17	CVE-2020-28129	Cross-site Scripting vulnerability in Adrianmercurio GYM Management System 1.0 Stored Cross-site scripting (XSS) vulnerability in SourceCodester Gym Management System 1.0 allows users to inject and store arbitrary JavaScript code in index.php?page=packages via vulnerable fields 'Package Name' and 'Description'. network low complexity adrianmercurio CWE-79	6.1

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.