Vulnerabilities > Online Sports Complex Booking System Project

DATE CVE VULNERABILITY TITLE RISK
2022-05-12 CVE-2022-29990 SQL Injection vulnerability in Online Sports Complex Booking System Project Online Sports Complex Booking System 1.0
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/admin/categories/view_category.php?id=.
network
low complexity
online-sports-complex-booking-system-project CWE-89
critical
9.8
2022-05-12 CVE-2022-29992 SQL Injection vulnerability in Online Sports Complex Booking System Project Online Sports Complex Booking System 1.0
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/admin/categories/manage_category.php?id=.
network
low complexity
online-sports-complex-booking-system-project CWE-89
critical
9.8
2022-05-12 CVE-2022-29993 SQL Injection vulnerability in Online Sports Complex Booking System Project Online Sports Complex Booking System 1.0
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/admin/bookings/view_booking.php?id=.
network
low complexity
online-sports-complex-booking-system-project CWE-89
critical
9.8
2022-05-12 CVE-2022-29994 SQL Injection vulnerability in Online Sports Complex Booking System Project Online Sports Complex Booking System 1.0
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/admin/?page=facilities/manage_facility&id=.
network
low complexity
online-sports-complex-booking-system-project CWE-89
critical
9.8
2022-05-12 CVE-2022-29995 SQL Injection vulnerability in Online Sports Complex Booking System Project Online Sports Complex Booking System 1.0
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /scbs/admin/?page=clients/manage_client&id=.
network
low complexity
online-sports-complex-booking-system-project CWE-89
critical
9.8
2022-04-25 CVE-2022-28093 Unspecified vulnerability in Online Sports Complex Booking System Project Online Sports Complex Booking System 1.0
SCBS Online Sports Venue Reservation System v1.0 was discovered to contain a local file inclusion vulnerability which allow attackers to execute arbitrary code via a crafted PHP file.
network
low complexity
online-sports-complex-booking-system-project
critical
9.8
2022-04-25 CVE-2022-28094 Cross-site Scripting vulnerability in Online Sports Complex Booking System Project Online Sports Complex Booking System 1.0
SCBS Online Sports Venue Reservation System v1.0 was discovered to contain a cross-site scripting (XSS) vulnerability via the fid parameter at booking.php.
6.1