erengozaydin

3 exploits Active since Apr 2022
CVE-2022-27927 NOMISEC CRITICAL WORKING POC
Microfinance Management System - SQL Injection
A SQL injection vulnerability exists in Microfinance Management System 1.0 when MySQL is being used as the application database. An attacker can issue SQL commands to the MySQL database through the vulnerable course_code and/or customer_number parameter.
1 stars
CVSS 9.8
CVE-2022-28079 NOMISEC HIGH WRITEUP
College Management System - SQL Injection
College Management System v1.0 was discovered to contain a SQL injection vulnerability via the course_code parameter.
CVSS 8.8
CVE-2022-28080 NOMISEC HIGH WORKING POC
Event Management System - SQL Injection
Royal Event Management System v1.0 was discovered to contain a SQL injection vulnerability via the todate parameter.
CVSS 8.8