CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1084 – SourceCodester One Church Management System Session userregister.php improper authentication
https://notcve.org/view.php?id=CVE-2022-1084
A vulnerability classified as critical was found in SourceCodester One Church Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /one_church/userregister.php. The manipulation leads to authentication bypass. The attack can be launched remotely. Se ha encontrado una vulnerabilidad clasificada como crítica en SourceCodester One Church Management System versión 1.0. • https://vuldb.com/?id.195643 • CWE-287: Improper Authentication •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1080 – SourceCodester One Church Management System attendancy.php sql injection
https://notcve.org/view.php?id=CVE-2022-1080
A vulnerability was found in SourceCodester One Church Management System 1.0. It has been declared as critical. This vulnerability affects code of the file attendancy.php as the manipulation of the argument search2 leads to sql injection. The attack can be initiated remotely. Se ha encontrado una vulnerabilidad en SourceCodester One Church Management System 1.0. • https://vuldb.com/?id.195442 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0CVE-2022-1079 – SourceCodester One Church Management System churchprofile.php cross site scripting
https://notcve.org/view.php?id=CVE-2022-1079
A vulnerability classified as problematic has been found in SourceCodester One Church Management System. Affected are multiple files and parameters which are prone to to cross site scripting. It is possible to launch the attack remotely. Se ha encontrado una vulnerabilidad clasificada como problemática en SourceCodester One Church Management System. Están afectados múltiples archivos y parámetros que son propensos a una vulnerabilidad de tipo cross site scripting. • https://vuldb.com/?id.195426 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •