Sourcecodester Microfinance Management System vulnerabilities
2 known vulnerabilities affecting sourcecodester/microfinance_management_system.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2022-1082P3CRITICALCVSS 9.8v1.02022-03-29
CVE-2022-1082 [CRITICAL] CWE-89 CVE-2022-1082: A vulnerability was found in SourceCodester Microfinance Management System 1.0. It has been rated as
A vulnerability was found in SourceCodester Microfinance Management System 1.0. It has been rated as critical. This issue affects the file /mims/login.php of the Login Page. The manipulation of the argument username/password with the input '||1=1# leads to sql injection. The attack may be initiated remotely.
nvd
CVE-2022-1081P4MEDIUMCVSS 6.1v1.02022-03-29
CVE-2022-1081 [MEDIUM] CWE-79 CVE-2022-1081: A vulnerability was found in SourceCodester Microfinance Management System 1.0. It has been declared
A vulnerability was found in SourceCodester Microfinance Management System 1.0. It has been declared as problematic. This vulnerability affects the file /mims/app/addcustomerHandler.php. The manipulation of the argument first_name, middle_name, and surname leads to cross site scripting. The attack can be initiated remotely.
nvd