Vulnerabilities (CVE)

Filtered by vendor Bank Management System Project Subscribe
Filtered by product Bank Management System
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-2087 1 Bank Management System Project 1 Bank Management System 2024-11-21 3.5 LOW 3.5 LOW
A vulnerability, which was classified as problematic, was found in SourceCodester Bank Management System 1.0. This affects the file /mnotice.php?id=2. The manipulation of the argument notice with the input <script>alert(1)</script> leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
CVE-2022-2086 1 Bank Management System Project 1 Bank Management System 2024-11-21 6.5 MEDIUM 6.3 MEDIUM
A vulnerability, which was classified as critical, has been found in SourceCodester Bank Management System 1.0. Affected by this issue is login.php. The manipulation of the argument password with the input 1'and 1=2 union select 1,sleep(10),3,4,5 --+ leads to sql injection. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
CVE-2022-26171 1 Bank Management System Project 1 Bank Management System 2024-11-21 7.5 HIGH 9.8 CRITICAL
Bank Management System v1.o was discovered to contain a SQL injection vulnerability via the email parameter.