Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2022-54293
HistoryJun 09, 2022 - 12:00 a.m.

Wedding Management System SQL Injection Vulnerability (CNVD-2022-54293)

2022-06-0900:00:00
China National Vulnerability Database
www.cnvd.org.cn
16
wedding management system
sql injection
validation
admin page
sensitive data
cnvd-2022-54293

EPSS

0.001

Percentile

37.7%

Wedding Management System is a wedding planning management system by John Paul Lim Gabule, a personal developer. version 1.0 of Wedding Management System is vulnerable to SQL injection, which stems from a lack of validation of external input on the admin/users_edit.php page. SQL statement validation, an attacker can use this vulnerability to execute illegal SQL commands to steal sensitive database data.

EPSS

0.001

Percentile

37.7%

Related for CNVD-2022-54293