Vulnerabilities > GYM Management System Project

DATE CVE VULNERABILITY TITLE RISK
2022-12-13 CVE-2022-46062 Cross-Site Request Forgery (CSRF) vulnerability in GYM Management System Project GYM Management System 0.0.1
Gym Management System v0.0.1 is vulnerable to Cross Site Request Forgery (CSRF).
network
low complexity
gym-management-system-project CWE-352
4.5
4.5
2020-12-02 CVE-2020-29288 SQL Injection vulnerability in GYM Management System Project GYM Management System 1.0
An SQL injection vulnerability was discovered in Gym Management System In manage_user.php file, GET parameter 'id' is vulnerable.
network
low complexity
gym-management-system-project CWE-89
7.5
7.5
2020-11-17 CVE-2020-28129 Cross-site Scripting vulnerability in GYM Management System Project GYM Management System 1.0
Stored Cross-site scripting (XSS) vulnerability in SourceCodester Gym Management System 1.0 allows users to inject and store arbitrary JavaScript code in index.php?page=packages via vulnerable fields 'Package Name' and 'Description'. 		4.3
4.3