Vulnerabilities > Barangay Management System Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-02-14 | CVE-2024-25207 | Cross-site Scripting vulnerability in Barangay Management System Project Barangay Management System 1.0 Barangay Population Monitoring System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the Add Resident function at /barangay-population-monitoring-system/masterlist.php. | 5.4 |
| 2024-02-14 | CVE-2024-25208 | Cross-site Scripting vulnerability in Barangay Management System Project Barangay Management System 1.0 Barangay Population Monitoring System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability in the Add Resident function at /barangay-population-monitoring-system/masterlist.php. | 5.4 |
| 2022-10-28 | CVE-2022-43228 | SQL Injection vulnerability in Barangay Management System Project Barangay Management System 1.0 Barangay Management System v1.0 was discovered to contain a SQL injection vulnerability via the hidden_id parameter at /clearance/clearance.php. | 7.2 |
| 2022-08-18 | CVE-2022-35175 | SQL Injection vulnerability in Barangay Management System Project Barangay Management System 1.0 Barangay Management System v1.0 was discovered to contain a SQL injection vulnerability via the hidden_id parameter at /blotter/blotter.php. | 9.8 |
| 2022-07-28 | CVE-2022-34557 | SQL Injection vulnerability in Barangay Management System Project Barangay Management System 1.0 Barangay Management System v1.0 was discovered to contain a SQL injection vulnerability via the hidden_id parameter at /pages/permit/permit.php. | 8.8 |
| 2022-07-27 | CVE-2022-34120 | Unrestricted Upload of File with Dangerous Type vulnerability in Barangay Management System Project Barangay Management System 1.0 Barangay Management System v1.0 was discovered to contain a remote code execution (RCE) vulnerability via the module editing function at /pages/activity/activity.php. | 7.2 |
| 2022-07-20 | CVE-2022-34042 | SQL Injection vulnerability in Barangay Management System Project Barangay Management System 1.0 Barangay Management System v1.0 was discovered to contain a SQL injection vulnerability via the hidden_id parameter at /pages/household/household.php. | 7.2 |
| 2022-07-19 | CVE-2022-34024 | Unrestricted Upload of File with Dangerous Type vulnerability in Barangay Management System Project Barangay Management System 1.0 Barangay Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the resident module editing function at /bmis/pages/resident/resident.php. | 7.2 |
| 2022-07-19 | CVE-2022-34023 | SQL Injection vulnerability in Barangay Management System Project Barangay Management System 1.0 Barangay Management System v1.0 was discovered to contain a SQL injection vulnerability via the hidden_id parameter at /officials/officials.php. | 9.8 |