Vulnerabilities > Oretnom23 > Judging Management System > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-12 | CVE-2023-30016 | SQL Injection vulnerability in Oretnom23 Judging Management System 1.0 SQL Injection vulnerability in oretnom23 Judging Management System v1.0, allows remote attackers to execute arbitrary code and obtain sensitive information via sub_event_id parameter in sub_event_details_edit.php. | 9.8 |
| 2024-01-12 | CVE-2023-30015 | SQL Injection vulnerability in Oretnom23 Judging Management System 1.0 SQL Injection vulnerability in oretnom23 Judging Management System v1.0, allows remote attackers to execute arbitrary code and obtain sensitive information via txtsearch parameter in review_search.php. | 9.8 |
| 2024-01-12 | CVE-2023-30014 | SQL Injection vulnerability in Oretnom23 Judging Management System 1.0 SQL Injection vulnerability in oretnom23 Judging Management System v1.0, allows remote attackers to execute arbitrary code and obtain sensitive information via sub_event_id parameter in sub_event_stat_update.php. | 9.8 |