Vulnerabilities > Online Diagnostic LAB Management System Project > Critical

DATE	CVE	VULNERABILITY TITLE	RISK
2022-11-16	CVE-2022-43135	SQL Injection vulnerability in Online Diagnostic LAB Management System Project Online Diagnostic LAB Management System 1.0 Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the username parameter at /diagnostic/login.php. network low complexity online-diagnostic-lab-management-system-project CWE-89 critical	9.8
2022-11-09	CVE-2022-43058	SQL Injection vulnerability in Online Diagnostic LAB Management System Project Online Diagnostic LAB Management System 1.0 Online Diagnostic Lab Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /odlms//classes/Master.php?f=delete_activity. network low complexity online-diagnostic-lab-management-system-project CWE-89 critical	9.8
2022-10-14	CVE-2022-42064	SQL Injection vulnerability in Online Diagnostic LAB Management System Project Online Diagnostic LAB Management System 1.0 Online Diagnostic Lab Management System version 1.0 remote exploit that bypasses login with SQL injection and then uploads a shell. network low complexity online-diagnostic-lab-management-system-project CWE-89 critical	9.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.