CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2022-43350
https://notcve.org/view.php?id=CVE-2022-43350
Sanitization Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /php-sms/classes/Master.php?f=delete_inquiry. Se descubrió que Sanitization Management System v1.0 contenía una vulnerabilidad de inyección SQL a través del parámetro id en /php-sms/classes/Master.php?f=delete_inquiry. • https://github.com/Hujozay/bug_report/blob/main/vendors/oretnom23/sanitization-management-system/SQLi-2.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2022-43352
https://notcve.org/view.php?id=CVE-2022-43352
Sanitization Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /php-sms/classes/Master.php?f=delete_quote. Se descubrió que Sanitization Management System v1.0 contenía una vulnerabilidad de inyección SQL a través del parámetro id en /php-sms/classes/Master.php?f=delete_quote. • https://github.com/Hujozay/bug_report/blob/main/vendors/oretnom23/sanitization-management-system/SQLi-1.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 1CVE-2022-43351
https://notcve.org/view.php?id=CVE-2022-43351
Sanitization Management System v1.0 was discovered to contain an arbitrary file deletion vulnerability via the component /classes/Master.php?f=delete_img. Se descubrió que Sanitization Management System v1.0 contenía una vulnerabilidad de eliminación de archivos arbitraria a través del componente /classes/Master.php?f=delete_img. • https://github.com/Hujozay/bug_report/blob/main/vendors/oretnom23/sanitization-management-system/delete-file-1.md •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-3868 – SourceCodester Sanitization Management System sql injection
https://notcve.org/view.php?id=CVE-2022-3868
A vulnerability classified as critical has been found in SourceCodester Sanitization Management System. Affected is an unknown function of the file /php-sms/classes/Master.php?f=save_quote. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. • https://github.com/x9AD8/Sanitization-Management-System/blob/main/README.md https://vuldb.com/?id.213012 • CWE-707: Improper Neutralization •
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2022-43355
https://notcve.org/view.php?id=CVE-2022-43355
Sanitization Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /php-sms/classes/Master.php?f=delete_service. Se descubrió que Sanitization Management System v1.0 contenía una vulnerabilidad de inyección SQL a través del parámetro id en /php-sms/classes/Master.php?f=delete_service. • https://github.com/daytime888/bug_report/blob/main/vendors/oretnom23/sanitization-management-system/SQLi-3.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •