Vulnerabilities > Wedding Management System Project > Wedding Management System > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-06-02 | CVE-2022-30818 | SQL Injection vulnerability in Wedding Management System Project Wedding Management System 1.0 Wedding Management System v1.0 is vulnerable to SQL injection via /Wedding-Management/admin/blog_events_edit.php?id=31. | 6.5 |
| 2022-06-02 | CVE-2022-30819 | Unrestricted Upload of File with Dangerous Type vulnerability in Wedding Management System Project Wedding Management System 1.0 In Wedding Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of "photos_edit.php" file. | 6.5 |
| 2022-06-02 | CVE-2022-30820 | Unrestricted Upload of File with Dangerous Type vulnerability in Wedding Management System Project Wedding Management System 1.0 In Wedding Management v1.0, there is an arbitrary file upload vulnerability in the picture upload point of "users_edit.php" file. | 6.5 |
| 2022-06-02 | CVE-2022-30821 | Unrestricted Upload of File with Dangerous Type vulnerability in Wedding Management System Project Wedding Management System 1.0 In Wedding Management System v1.0, the editing function of the "Services" module in the background management system has an arbitrary file upload vulnerability in the picture upload point of "package_edit.php" file. | 6.5 |
| 2022-06-02 | CVE-2022-30822 | Unrestricted Upload of File with Dangerous Type vulnerability in Wedding Management System Project Wedding Management System 1.0 In Wedding Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of "users_profile.php" file. | 6.5 |
| 2022-06-02 | CVE-2022-30823 | SQL Injection vulnerability in Wedding Management System Project Wedding Management System 1.0 Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\blog_events_edit.php. | 6.5 |
| 2022-06-02 | CVE-2022-30825 | SQL Injection vulnerability in Wedding Management System Project Wedding Management System 1.0 Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\client_edit.php. | 6.5 |
| 2022-06-02 | CVE-2022-30826 | SQL Injection vulnerability in Wedding Management System Project Wedding Management System 1.0 Wedding Management System v1.0 is vulnerable to SQL Injection via admin\client_assign.php. | 6.5 |
| 2022-06-02 | CVE-2022-30827 | SQL Injection vulnerability in Wedding Management System Project Wedding Management System 1.0 Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\package_edit.php. | 6.5 |
| 2022-06-02 | CVE-2022-30828 | SQL Injection vulnerability in Wedding Management System Project Wedding Management System 1.0 Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\photos_edit.php. | 6.5 |