Simple Client Management System Project: >> Simple Client Management System Security Vulnerabilities
A Stored Cross-site scripting (XSS) vulnerability via MAster.php in Sourcecodetester Simple Client Management System (SCMS) 1.0 allows remote attackers to inject arbitrary web script or HTML via the vulnerable input fields.
CVSS Score
5.4
EPSS Score
0.002
Published
2022-12-22
Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_invoice.
CVSS Score
9.8
EPSS Score
0.002
Published
2022-05-12
Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_service.
CVSS Score
9.8
EPSS Score
0.002
Published
2022-05-12
Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_client.
CVSS Score
9.8
EPSS Score
0.002
Published
2022-05-12
Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_designation.
CVSS Score
9.8
EPSS Score
0.002
Published
2022-05-12
Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=user/manage_user&id=.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-05-12
Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Users.php?f=delete.
CVSS Score
9.8
EPSS Score
0.002
Published
2022-05-12
Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/maintenance/manage_service.php?id=.
CVSS Score
9.8
EPSS Score
0.002
Published
2022-05-12
Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=invoice/view_invoice&id=.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-05-12
Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=client/view_client&id=.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-05-12
Page 1