根据网页截图中的信息,以下是关于CVE-2022-29009漏洞的关键信息: [Suggested description]: Multiple SQL injection vulnerabilities via the username and password parameters in the Admin panel of Cyber Cafe Management System Project v1.0 allows attackers to bypass authentication. [Vulnerability Type]: SQL Injection [Vendor of Product]: Cyber Cafe Management System Project (CCMS) 1.0 - SQL Injection Authentication Bypass [Affected Product Code Base]: https://phpgurukul.com/cyber-cafe-management-system-using-php-mysql/ - V 1.0 [Affected Component]: /ccms/index.php [Attack Type]: Local [Impact Code execution]: true [Attack Vectors]: - Go to Admin Login Panel and try to bypass login. #username : ' OR 1 -- - password : ccms [Reference]: https://www.exploit-db.com/exploits/50355 [Discoverer]: sanjay singh 此漏洞允许攻击者通过SQL注入攻击在Cyber Cafe Management System Project v1.0的管理面板中利用用户名和密码参数来绕过身份验证。