Carmelogarcia Intern Membership Management System vulnerabilities

CVE-2023-7131 [MEDIUM] CWE-89 CVE-2023-7131: A vulnerability was found in code-projects Intern Membership Management System 2.0 and classified as A vulnerability was found in code-projects Intern Membership Management System 2.0 and classified as critical. Affected by this issue is some unknown functionality of the file /user_registration/ of the component User Registration. The manipulation of the argument userName leads to sql injection. The exploit has been disclosed to the public and may be

CVE-2023-7132 [LOW] CWE-79 CVE-2023-7132: A vulnerability was found in code-projects Intern Membership Management System 2.0. It has been clas A vulnerability was found in code-projects Intern Membership Management System 2.0. It has been classified as problematic. This affects an unknown part of the file /user_registration/ of the component User Registration. The manipulation of the argument userName/firstName/lastName/userEmail with the input ">confirm(document.domain)h0la leads to cross site