Wedding Management
by Codeastro
CVEs (18)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-30822 | Hig | 0.57 | 8.8 | 0.01 | Jun 2, 2022 | In Wedding Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of "users_profile.php" file. | ||
| CVE-2022-30821 | Hig | 0.57 | 8.8 | 0.01 | Jun 2, 2022 | In Wedding Management System v1.0, the editing function of the "Services" module in the background management system has an arbitrary file upload vulnerability in the picture upload point of "package_edit.php" file. | ||
| CVE-2022-30820 | Hig | 0.57 | 8.8 | 0.01 | Jun 2, 2022 | In Wedding Management v1.0, there is an arbitrary file upload vulnerability in the picture upload point of "users_edit.php" file. | ||
| CVE-2022-30819 | Hig | 0.57 | 8.8 | 0.01 | Jun 2, 2022 | In Wedding Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of "photos_edit.php" file. | ||
| CVE-2022-30836 | Hig | 0.47 | 7.2 | 0.01 | Jun 2, 2022 | Wedding Management System v1.0 is vulnerable to SQL Injection. via Wedding-Management/admin/select.php. | ||
| CVE-2022-30835 | Hig | 0.47 | 7.2 | 0.01 | Jun 2, 2022 | Wedding Management System v1.0 is vulnerable to SQL Injection. via /Wedding-Management/admin/budget.php?booking_id=. | ||
| CVE-2022-30834 | Hig | 0.47 | 7.2 | 0.01 | Jun 2, 2022 | Wedding Management System v1.0 is vulnerable to SQL Injection via /Wedding-Management/admin/client_manage_account_details.php?booking_id=31&user_id= | ||
| CVE-2022-30833 | Hig | 0.47 | 7.2 | 0.01 | Jun 2, 2022 | Wedding Management System v1.0 is vulnerable to SQL Injection via /Wedding-Management/admin/client_edit.php?booking=31&user_id=. | ||
| CVE-2022-30832 | Hig | 0.47 | 7.2 | 0.01 | Jun 2, 2022 | Wedding Management System v1.0 is vulnerable to SQL Injection via /Wedding-Management/admin/client_assign.php?booking=31&user_id=. | ||
| CVE-2022-30831 | Hig | 0.47 | 7.2 | 0.01 | Jun 2, 2022 | Wedding Management System v1.0 is vulnerable to SQL Injection via Wedding-Management/wedding_details.php. | ||
| CVE-2022-30830 | Hig | 0.47 | 7.2 | 0.01 | Jun 2, 2022 | Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\feature_edit.php. | ||
| CVE-2022-30829 | Hig | 0.47 | 7.2 | 0.01 | Jun 2, 2022 | Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\users_edit.php. | ||
| CVE-2022-30828 | Hig | 0.47 | 7.2 | 0.01 | Jun 2, 2022 | Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\photos_edit.php. | ||
| CVE-2022-30827 | Hig | 0.47 | 7.2 | 0.01 | Jun 2, 2022 | Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\package_edit.php. | ||
| CVE-2022-30826 | Hig | 0.47 | 7.2 | 0.01 | Jun 2, 2022 | Wedding Management System v1.0 is vulnerable to SQL Injection via admin\client_assign.php. | ||
| CVE-2022-30825 | Hig | 0.47 | 7.2 | 0.01 | Jun 2, 2022 | Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\client_edit.php. | ||
| CVE-2022-30823 | Hig | 0.47 | 7.2 | 0.01 | Jun 2, 2022 | Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\blog_events_edit.php. | ||
| CVE-2022-30818 | Hig | 0.47 | 7.2 | 0.01 | Jun 2, 2022 | Wedding Management System v1.0 is vulnerable to SQL injection via /Wedding-Management/admin/blog_events_edit.php?id=31. |
- risk 0.57cvss 8.8epss 0.01
In Wedding Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of "users_profile.php" file.
- risk 0.57cvss 8.8epss 0.01
In Wedding Management System v1.0, the editing function of the "Services" module in the background management system has an arbitrary file upload vulnerability in the picture upload point of "package_edit.php" file.
- risk 0.57cvss 8.8epss 0.01
In Wedding Management v1.0, there is an arbitrary file upload vulnerability in the picture upload point of "users_edit.php" file.
- risk 0.57cvss 8.8epss 0.01
In Wedding Management System v1.0, there is an arbitrary file upload vulnerability in the picture upload point of "photos_edit.php" file.
- risk 0.47cvss 7.2epss 0.01
Wedding Management System v1.0 is vulnerable to SQL Injection. via Wedding-Management/admin/select.php.
- risk 0.47cvss 7.2epss 0.01
Wedding Management System v1.0 is vulnerable to SQL Injection. via /Wedding-Management/admin/budget.php?booking_id=.
- risk 0.47cvss 7.2epss 0.01
Wedding Management System v1.0 is vulnerable to SQL Injection via /Wedding-Management/admin/client_manage_account_details.php?booking_id=31&user_id=
- risk 0.47cvss 7.2epss 0.01
Wedding Management System v1.0 is vulnerable to SQL Injection via /Wedding-Management/admin/client_edit.php?booking=31&user_id=.
- risk 0.47cvss 7.2epss 0.01
Wedding Management System v1.0 is vulnerable to SQL Injection via /Wedding-Management/admin/client_assign.php?booking=31&user_id=.
- risk 0.47cvss 7.2epss 0.01
Wedding Management System v1.0 is vulnerable to SQL Injection via Wedding-Management/wedding_details.php.
- risk 0.47cvss 7.2epss 0.01
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\feature_edit.php.
- risk 0.47cvss 7.2epss 0.01
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\users_edit.php.
- risk 0.47cvss 7.2epss 0.01
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\photos_edit.php.
- risk 0.47cvss 7.2epss 0.01
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\package_edit.php.
- risk 0.47cvss 7.2epss 0.01
Wedding Management System v1.0 is vulnerable to SQL Injection via admin\client_assign.php.
- risk 0.47cvss 7.2epss 0.01
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\client_edit.php.
- risk 0.47cvss 7.2epss 0.01
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\blog_events_edit.php.
- risk 0.47cvss 7.2epss 0.01
Wedding Management System v1.0 is vulnerable to SQL injection via /Wedding-Management/admin/blog_events_edit.php?id=31.