Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple SQL Injection vulnerabilities exist in AbhishekMali21 GYM-MANAGEMENT-SYSTEM 1.0 via the 'name' parameter in (1) member_search.php, (2) trainer_search.php, and (3) gym_search.php, and via the 'id' parameter in (4) payment_search.php. An unauthenticated remote attacker can exploit these issues to inject malicious SQL commands, leading to unauthorized data extraction, authentication bypass, or modification of database contents.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
GYM-MANAGEMENT-SYSTEM 安全漏洞
Vulnerability Description
GYM-MANAGEMENT-SYSTEM是Abhishek S个人开发者的一个健身房管理系统。 GYM-MANAGEMENT-SYSTEM 1.0版本存在安全漏洞,该漏洞源于member_search.php、trainer_search.php和gym_search.php中的name参数以及payment_search.php中的id参数未经验证,可能导致SQL注入攻击。
CVSS Information
N/A
Vulnerability Type
N/A