← back
CVE-2022-1080

SourceCodester One Church Management System attendancy.php sql injection

CVSS 7.3 HIGHEPSS 0.7%CWE-89
Vexday Risk Score
21Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 7.3EPSS 0.7%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
29 Mar 2022Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
A vulnerability was found in SourceCodester One Church Management System 1.0. It has been declared as critical. This vulnerability affects code of the file attendancy.php as the manipulation of the argument search2 leads to sql injection. The attack can be initiated remotely.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Affected products
SourceCodester · One Church Management System

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://vuldb.com/?id.195442