Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gym management system project gym management system - vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2022-2776
A vulnerability classified as problematic has been found in SourceCodester Gym Management System. Affected is an unknown function of the file delete_user.php. The manipulation of the argument delete_user leads to denial of service. It is possible to launch the attack remotely. Th...
Gym Management System Project Gym Management System -
9.8
CVSSv3
CVE-2022-2744
A vulnerability, which was classified as critical, has been found in SourceCodester Gym Management System. Affected by this issue is some unknown functionality of the file /admin/add_exercises.php of the component Background Management. The manipulation of the argument exer_img l...
Gym Management System Project Gym Management System -
4.5
CVSSv3
CVE-2022-46062
Gym Management System v0.0.1 is vulnerable to Cross Site Request Forgery (CSRF).
Gym Management System Project Gym Management System 0.0.1
6.1
CVSSv3
CVE-2020-28129
Stored Cross-site scripting (XSS) vulnerability in SourceCodester Gym Management System 1.0 allows users to inject and store arbitrary JavaScript code in index.php?page=packages via vulnerable fields 'Package Name' and 'Description'.
Gym Management System Project Gym Management System 1.0
9.8
CVSSv3
CVE-2020-29288
An SQL injection vulnerability exists in Gym Management System In manage_user.php file, GET parameter 'id' is vulnerable.
Gym Management System Project Gym Management System 1.0
8.8
CVSSv3
CVE-2023-5185
Gym Management System Project v1.0 is vulnerable to an Insecure File Upload vulnerability on the 'file' parameter of profile/i.php page, allowing an authenticated malicious user to obtain Remote Code Execution on the server hosting the application.
Projectworlds Gym Management System Project 1.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2