Sourcecodester One Church Management System vulnerabilities

CVE-2022-1080 [HIGH] CWE-89 CVE-2022-1080: A vulnerability was found in SourceCodester One Church Management System 1.0. It has been declared a A vulnerability was found in SourceCodester One Church Management System 1.0. It has been declared as critical. This vulnerability affects code of the file attendancy.php as the manipulation of the argument search2 leads to sql injection. The attack can be initiated remotely.

CVE-2022-1084 [HIGH] CWE-287 CVE-2022-1084: A vulnerability classified as critical was found in SourceCodester One Church Management System 1.0. A vulnerability classified as critical was found in SourceCodester One Church Management System 1.0. Affected by this vulnerability is an unknown functionality of the file /one_church/userregister.php. The manipulation leads to authentication bypass. The attack can be launched remotely.

CVE-2022-1079 [MEDIUM] CWE-79 CVE-2022-1079: A vulnerability classified as problematic has been found in SourceCodester One Church Management Sys A vulnerability classified as problematic has been found in SourceCodester One Church Management System. Affected are multiple files and parameters which are prone to to cross site scripting. It is possible to launch the attack remotely.