Vulnerabilities > Dynamic Transaction Queuing System Project > Dynamic Transaction Queuing System > High

DATE	CVE	VULNERABILITY TITLE	RISK
2023-04-05	CVE-2023-26856	SQL Injection vulnerability in Dynamic Transaction Queuing System Project Dynamic Transaction Queuing System 1.0 Dynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter at /admin/ajax.php?action=login. network low complexity dynamic-transaction-queuing-system-project CWE-89	7.2
2023-04-05	CVE-2023-26857	Unrestricted Upload of File with Dangerous Type vulnerability in Dynamic Transaction Queuing System Project Dynamic Transaction Queuing System 1.0 An arbitrary file upload vulnerability in /admin/ajax.php?action=save_uploads of Dynamic Transaction Queuing System v1.0 allows attackers to execute arbitrary code via a crafted PHP file. network low complexity dynamic-transaction-queuing-system-project CWE-434	7.2
2023-01-13	CVE-2022-46950	SQL Injection vulnerability in Dynamic Transaction Queuing System Project Dynamic Transaction Queuing System 1.0 Dynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/ajax.php?action=delete_window. network low complexity dynamic-transaction-queuing-system-project CWE-89	7.2
2023-01-13	CVE-2022-46951	SQL Injection vulnerability in Dynamic Transaction Queuing System Project Dynamic Transaction Queuing System 1.0 Dynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/ajax.php?action=delete_uploads. network low complexity dynamic-transaction-queuing-system-project CWE-89	7.2
2023-01-13	CVE-2022-46952	SQL Injection vulnerability in Dynamic Transaction Queuing System Project Dynamic Transaction Queuing System 1.0 Dynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/ajax.php?action=delete_user. network low complexity dynamic-transaction-queuing-system-project CWE-89	7.2
2023-01-13	CVE-2022-46953	SQL Injection vulnerability in Dynamic Transaction Queuing System Project Dynamic Transaction Queuing System 1.0 Dynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/ajax.php?action=save_window. network low complexity dynamic-transaction-queuing-system-project CWE-89	7.2
2023-01-13	CVE-2022-46956	SQL Injection vulnerability in Dynamic Transaction Queuing System Project Dynamic Transaction Queuing System 1.0 Dynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/manage_user.php. network low complexity dynamic-transaction-queuing-system-project CWE-89	7.2
2022-12-12	CVE-2022-45275	Unrestricted Upload of File with Dangerous Type vulnerability in Dynamic Transaction Queuing System Project Dynamic Transaction Queuing System 1.0 An arbitrary file upload vulnerability in /queuing/admin/ajax.php?action=save_settings of Dynamic Transaction Queuing System v1.0 allows attackers to execute arbitrary code via a crafted PHP file. network low complexity dynamic-transaction-queuing-system-project CWE-434	7.2

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.