Vulnerabilities > Simple Client Management System Project
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-22 | CVE-2021-43657 | Cross-site Scripting vulnerability in Simple Client Management System Project Simple Client Management System 1.0 A Stored Cross-site scripting (XSS) vulnerability via MAster.php in Sourcecodetester Simple Client Management System (SCMS) 1.0 allows remote attackers to inject arbitrary web script or HTML via the vulnerable input fields. | 5.4 |
| 2022-05-12 | CVE-2022-29747 | SQL Injection vulnerability in Simple Client Management System Project Simple Client Management System 1.0 Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=invoice/manage_invoice&id= // Leak place ---> id. | 9.8 |
| 2022-05-12 | CVE-2022-29748 | SQL Injection vulnerability in Simple Client Management System Project Simple Client Management System 1.0 Simple Client Management System 1.0 is vulnerable to SQL Injection via \cms\admin?page=client/manage_client&id=. | 9.8 |
| 2022-05-12 | CVE-2022-29749 | SQL Injection vulnerability in Simple Client Management System Project Simple Client Management System 1.0 Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_invoice. | 9.8 |
| 2022-05-12 | CVE-2022-29750 | SQL Injection vulnerability in Simple Client Management System Project Simple Client Management System 1.0 Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_service. | 9.8 |
| 2022-05-12 | CVE-2022-29751 | SQL Injection vulnerability in Simple Client Management System Project Simple Client Management System 1.0 Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_client. | 9.8 |
| 2022-05-12 | CVE-2022-29979 | SQL Injection vulnerability in Simple Client Management System Project Simple Client Management System 1.0 Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_designation. | 9.8 |
| 2022-05-12 | CVE-2022-29980 | SQL Injection vulnerability in Simple Client Management System Project Simple Client Management System 1.0 Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=user/manage_user&id=. | 9.8 |
| 2022-05-12 | CVE-2022-29981 | SQL Injection vulnerability in Simple Client Management System Project Simple Client Management System 1.0 Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Users.php?f=delete. | 9.8 |
| 2022-05-12 | CVE-2022-29982 | SQL Injection vulnerability in Simple Client Management System Project Simple Client Management System 1.0 Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/maintenance/manage_service.php?id=. | 9.8 |