Lead Management System
CVEs (6)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2022-47864 | Cri | 0.64 | 9.8 | 0.01 | Jan 11, 2023 | Lead Management System v1.0 is vulnerable to SQL Injection via the id parameter in removeCategories.php. | ||
| CVE-2022-47862 | Cri | 0.64 | 9.8 | 0.01 | Jan 11, 2023 | Lead Management System v1.0 is vulnerable to SQL Injection via the customer_id parameter in ajax_represent.php. | ||
| CVE-2022-47861 | Cri | 0.64 | 9.8 | 0.01 | Jan 11, 2023 | Lead Management System v1.0 is vulnerable to SQL Injection via the id parameter in removeLead.php. | ||
| CVE-2022-47866 | Cri | 0.64 | 9.8 | 0.01 | Jan 11, 2023 | Lead management system v1.0 is vulnerable to SQL Injection via the id parameter in removeBrand.php. | ||
| CVE-2022-47865 | Cri | 0.64 | 9.8 | 0.01 | Jan 11, 2023 | Lead Management System v1.0 is vulnerable to SQL Injection via the id parameter in removeOrder.php. | ||
| CVE-2022-4855 | Hig | 0.50 | 7.3 | 0.26 | Dec 30, 2022 | A vulnerability, which was classified as critical, was found in SourceCodester Lead Management System 1.0. Affected is an unknown function of the file login.php. The manipulation of the argument username leads to sql injection. It is possible to launch the attack remotely. The… |
- risk 0.64cvss 9.8epss 0.01
Lead Management System v1.0 is vulnerable to SQL Injection via the id parameter in removeCategories.php.
- risk 0.64cvss 9.8epss 0.01
Lead Management System v1.0 is vulnerable to SQL Injection via the customer_id parameter in ajax_represent.php.
- risk 0.64cvss 9.8epss 0.01
Lead Management System v1.0 is vulnerable to SQL Injection via the id parameter in removeLead.php.
- risk 0.64cvss 9.8epss 0.01
Lead management system v1.0 is vulnerable to SQL Injection via the id parameter in removeBrand.php.
- risk 0.64cvss 9.8epss 0.01
Lead Management System v1.0 is vulnerable to SQL Injection via the id parameter in removeOrder.php.
- risk 0.50cvss 7.3epss 0.26
A vulnerability, which was classified as critical, was found in SourceCodester Lead Management System 1.0. Affected is an unknown function of the file login.php. The manipulation of the argument username leads to sql injection. It is possible to launch the attack remotely. The…