CVE-2022-2745: SQL Injection
First published: Thu Aug 11 2022(Updated: )
A vulnerability, which was classified as critical, was found in SourceCodester Gym Management System. This affects an unknown part of the file /admin/add_trainers.php of the component Add New Trainer. The manipulation of the argument trainer_name leads to sql injection. It is possible to initiate the attack remotely. The identifier VDB-206013 was assigned to this vulnerability.
Credit: cna@vuldb.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Gym Management System Project Gym Management System |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2022-2745?
The severity of CVE-2022-2745 is critical.
How does CVE-2022-2745 affect SourceCodester Gym Management System?
CVE-2022-2745 affects an unknown part of the file /admin/add_trainers.php of the component Add New Trainer in SourceCodester Gym Management System.
What type of vulnerability is CVE-2022-2745?
CVE-2022-2745 is a SQL injection vulnerability.
How can the SQL injection vulnerability in CVE-2022-2745 be exploited?
The SQL injection vulnerability in CVE-2022-2745 can be exploited by manipulating the argument trainer_name.
Is there a fix available for CVE-2022-2745?
Currently, no fix is available for CVE-2022-2745. It is recommended to apply any official patches or updates provided by the vendor once they become available.