Judging Management System Project: >> Judging Management System Security Vulnerabilities
A vulnerability was found in SourceCodester Judging Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file summary_results.php. The manipulation of the argument main_event_id leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-223549 was assigned to this vulnerability.
CVSS Score
6.3
EPSS Score
0.001
Published
2023-03-22
Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateview.php.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-03-03
Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateTxtview.php.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-03-03
Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateBlankTxtview.php.
CVSS Score
9.8
EPSS Score
0.001
Published
2023-03-03
Judging Management System 1.0 was discovered to contain an arbitrary file upload vulnerability via the component edit_organizer.php.
CVSS Score
8.1
EPSS Score
0.038
Published
2023-02-23
A cross-site scripting (XSS) vulnerability in Judging Management System v1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the firstname parameter.
CVSS Score
6.1
EPSS Score
0.001
Published
2023-01-12
Judging Management System v1.0.0 was discovered to contain a SQL injection vulnerability via the username parameter.
CVSS Score
7.8
EPSS Score
0.001
Published
2023-01-12
Page 2