Total
12 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2022-42229 | 1 Wedding Planner Project | 1 Wedding Planner | 2024-11-21 | N/A | 8.8 HIGH |
| Wedding Planner v1.0 is vulnerable to Arbitrary code execution via package_edit.php. | |||||
| CVE-2022-42075 | 1 Wedding Planner Project | 1 Wedding Planner | 2024-11-21 | N/A | 9.8 CRITICAL |
| Wedding Planner v1.0 is vulnerable to arbitrary code execution. | |||||
| CVE-2022-42034 | 1 Wedding Planner Project | 1 Wedding Planner | 2024-11-21 | N/A | 8.8 HIGH |
| Wedding Planner v1.0 is vulnerable to arbitrary code execution via users_profile.php. | |||||
| CVE-2022-41539 | 1 Wedding Planner Project | 1 Wedding Planner | 2024-11-21 | N/A | 8.8 HIGH |
| Wedding Planner v1.0 was discovered to contain an arbitrary file upload vulnerability in the component /admin/users_add.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file. | |||||
| CVE-2022-41538 | 1 Wedding Planner Project | 1 Wedding Planner | 2024-11-21 | N/A | 8.8 HIGH |
| Wedding Planner v1.0 was discovered to contain an arbitrary file upload vulnerability in the component /Wedding-Management-PHP/admin/photos_add.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file. | |||||
| CVE-2022-40485 | 1 Wedding Planner Project | 1 Wedding Planner | 2024-11-21 | N/A | 9.8 CRITICAL |
| Wedding Planner v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /package_detail.php. | |||||
| CVE-2022-40484 | 1 Wedding Planner Project | 1 Wedding Planner | 2024-11-21 | N/A | 9.8 CRITICAL |
| Wedding Planner v1.0 was discovered to contain a SQL injection vulnerability via the booking parameter at /admin/client_edit.php. | |||||
| CVE-2022-40483 | 1 Wedding Planner Project | 1 Wedding Planner | 2024-11-21 | N/A | 9.8 CRITICAL |
| Wedding Planner v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /wedding_details.php. | |||||
| CVE-2022-40404 | 1 Wedding Planner Project | 1 Wedding Planner | 2024-11-21 | N/A | 8.8 HIGH |
| Wedding Planner v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/select.php. | |||||
| CVE-2022-40403 | 1 Wedding Planner Project | 1 Wedding Planner | 2024-11-21 | N/A | 7.2 HIGH |
| Wedding Planner v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/feature_edit.php. | |||||
| CVE-2022-40402 | 1 Wedding Planner Project | 1 Wedding Planner | 2024-11-21 | N/A | 8.8 HIGH |
| Wedding Planner v1.0 was discovered to contain a SQL injection vulnerability via the booking parameter at /admin/client_assign.php. | |||||
| CVE-2022-38509 | 1 Wedding Planner Project | 1 Wedding Planner | 2024-11-21 | N/A | 9.8 CRITICAL |
| Wedding Planner v1.0 was discovered to contain a SQL injection vulnerability via the booking_id parameter at /admin/budget.php. | |||||