CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2024-48570
https://notcve.org/view.php?id=CVE-2024-48570
22 Oct 2024 — Client Management System 1.0 was discovered to contain a SQL injection vulnerability via the Between Dates Reports parameter at /admin/bwdates-reports-ds.php. • https://github.com/Luc1f3r066/Client-Management-System-v1.0- • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 1CVE-2021-43657
https://notcve.org/view.php?id=CVE-2021-43657
22 Dec 2022 — A Stored Cross-site scripting (XSS) vulnerability via MAster.php in Sourcecodetester Simple Client Management System (SCMS) 1.0 allows remote attackers to inject arbitrary web script or HTML via the vulnerable input fields. • https://github.com/c0n5n3d/CVE-2021-43657 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-29747
https://notcve.org/view.php?id=CVE-2022-29747
12 May 2022 — Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=invoice/manage_invoice&id= // Leak place ---> id. Simple Client Management System versión 1.0, es vulnerable a una inyección SQL por medio de /cms/admin/?page=invoice/manage_invoice&id= // Lugar de Filtrado ---> id • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/simple-client-management-system/SQLi-2.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-29748
https://notcve.org/view.php?id=CVE-2022-29748
12 May 2022 — Simple Client Management System 1.0 is vulnerable to SQL Injection via \cms\admin?page=client/manage_client&id=. Simple Client Management System versión 1.0, es vulnerable a una inyección SQL por medio de \cms\admin?page=client/manage_client&id= • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/simple-client-management-system/SQLi-1.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-29749
https://notcve.org/view.php?id=CVE-2022-29749
12 May 2022 — Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_invoice. Simple Client Management System versión 1.0, es vulnerable a una inyección SQL por medio de /cms/classes/Master.php?f=delete_invoice • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/simple-client-management-system/SQLi-4.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-29750
https://notcve.org/view.php?id=CVE-2022-29750
12 May 2022 — Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_service. Simple Client Management System versión 1.0, es vulnerable a una inyección SQL por medio de /cms/classes/Master.php?f=delete_service • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/simple-client-management-system/SQLi-3.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-29751
https://notcve.org/view.php?id=CVE-2022-29751
12 May 2022 — Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_client. Simple Client Management System versión 1.0, es vulnerable a una inyección SQL por medio de /cms/classes/Master.php?f=delete_client • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/simple-client-management-system/SQLi-5.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-29981
https://notcve.org/view.php?id=CVE-2022-29981
12 May 2022 — Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Users.php?f=delete. Simple Client Management System versión 1.0, es vulnerable a una inyección SQL por medio de /cms/classes/Users.php?f=delete • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/simple-client-management-system/SQLi-8.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-29979
https://notcve.org/view.php?id=CVE-2022-29979
12 May 2022 — Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_designation. Simple Client Management System versión 1.0, es vulnerable a una inyección SQL por medio de /cms/classes/Master.php?f=delete_designation • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/simple-client-management-system/SQLi-6.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 1CVE-2022-29980
https://notcve.org/view.php?id=CVE-2022-29980
12 May 2022 — Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=user/manage_user&id=. Simple Client Management System versión 1.0, es vulnerable a una inyección SQL por medio de /cms/admin/?page=user/manage_user&id= • https://github.com/k0xx11/bug_report/blob/main/vendors/oretnom23/simple-client-management-system/SQLi-7.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •