What is CVE-2022-2708?

CVE-2022-2708 is a critical vulnerability found in SourceCodester Gym Management System.

How does CVE-2022-2708 affect SourceCodester Gym Management System?

CVE-2022-2708 affects an unknown part of the file login.php in SourceCodester Gym Management System.

What is the severity of CVE-2022-2708?

The severity of CVE-2022-2708 is classified as critical with a severity value of 9.8.

How can CVE-2022-2708 be exploited?

CVE-2022-2708 can be exploited by manipulating the user_login argument with a specific input.

Is there a fix available for CVE-2022-2708?

There is no specific fix available mentioned for CVE-2022-2708. It is recommended to stay updated with the latest version of SourceCodester Gym Management System.

Vulnerability/
CVE-2022-2708

critical

9.8

CWE

8/8/2022

12/8/2022

CVE-2022-2708: SQL Injection

First published: Mon Aug 08 2022(Updated: )

A vulnerability, which was classified as critical, was found in SourceCodester Gym Management System. This affects an unknown part of the file login.php. The manipulation of the argument user_login with the input 123@xx.com' OR (SELECT 9084 FROM(SELECT COUNT(*),CONCAT(0x7178767871,(SELECT (ELT(9084=9084,1))),0x71767a6271,FLOOR(RAND(0)*2))x FROM INFORMATION_SCHEMA.PLUGINS GROUP BY x)a)-- dPvW leads to sql injection. Access to the local network is required for this attack. The exploit has been disclosed to the public and may be used. The identifier VDB-205833 was assigned to this vulnerability.

Credit: cna@vuldb.com

Affected Software	Affected Version	How to fix
Gym Management System Project Gym Management System

Never miss a vulnerability like this again

Reference Links

https://vuldb.com/?id.205833

Frequently Asked Questions

What is CVE-2022-2708?
CVE-2022-2708 is a critical vulnerability found in SourceCodester Gym Management System.
How does CVE-2022-2708 affect SourceCodester Gym Management System?
CVE-2022-2708 affects an unknown part of the file login.php in SourceCodester Gym Management System.
What is the severity of CVE-2022-2708?
The severity of CVE-2022-2708 is classified as critical with a severity value of 9.8.
How can CVE-2022-2708 be exploited?
CVE-2022-2708 can be exploited by manipulating the user_login argument with a specific input.
Is there a fix available for CVE-2022-2708?
There is no specific fix available mentioned for CVE-2022-2708. It is recommended to stay updated with the latest version of SourceCodester Gym Management System.

collector/nvd-index
agent/references
agent/weakness
agent/severity
agent/author
agent/description
agent/tags
agent/type
agent/event
agent/first-publish-date
agent/softwarecombine
agent/last-modified-date
vendor/gym management system project
canonical/gym management system project gym management system

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.