CVE-2023-5589 – SourceCodester Judging Management System login.php sql injection
https://notcve.org/view.php?id=CVE-2023-5589
A vulnerability was found in SourceCodester Judging Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file login.php. The manipulation of the argument password leads to sql injection. The attack can be initiated remotely. • https://github.com/GodRone/Judging-Management-System_SQL-injection/blob/main/Judging%20Management%20System_SQL%20injection.md https://vuldb.com/?ctiid.242188 https://vuldb.com/?id.242188 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVE-2023-37682
https://notcve.org/view.php?id=CVE-2023-37682
Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /php-jms/deductScores.php. • https://github.com/rt122001/CVES/blob/main/CVE-2023-37682.txt https://www.sourcecodester.com/php/15910/judging-management-system-using-php-and-mysql-free-source-code.html • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVE-2023-30245
https://notcve.org/view.php?id=CVE-2023-30245
SQL injection vulnerability found in Judging Management System v.1.0 allows a remote attacker to execute arbitrary code via the crit_id parameter of the edit_criteria.php file. • https://github.com/qingning988/cve_report/blob/main/judging-management-system/SQLi-1.md https://www.github.com • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVE-2023-30246
https://notcve.org/view.php?id=CVE-2023-30246
SQL injection vulnerability found in Judging Management System v.1.0 allows a remote attacker to execute arbitrary code via the contestant_id parameter. • https://github.com/qingning988/cve_report/blob/main/judging-management-system/SQLi-2.md https://www.github.com • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVE-2023-30018
https://notcve.org/view.php?id=CVE-2023-30018
Judging Management System v1.0 is vulnerable to SQL Injection. via /php-jms/review_se_result.php?mainevent_id=. • https://github.com/10F26/bug_report/blob/main/judging-management-system/SQLi-1.md • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •