Online Banking System Project Online Banking System — known CVE vulnerabilities
Every CVE whose affected-product data names Online Banking System Project Online Banking System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (14)
CVE-2022-40122 — CVSS 9.8 (critical): Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the cust_id parameter at /net-banking/edit_customer_a…
CVE-2022-40113 — CVSS 9.8 (critical): Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the cust_id parameter at /net-banking/send_funds.php.
CVE-2022-40114 — CVSS 9.8 (critical): Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the cust_id parameter at /net-banking/edit_customer.p…
CVE-2022-40115 — CVSS 9.8 (critical): Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the cust_id parameter at /net-banking/delete_benefici…
CVE-2022-40116 — CVSS 9.8 (critical): Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the search parameter at /net-banking/beneficiary.php.
CVE-2022-40117 — CVSS 9.8 (critical): Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the cust_id parameter at /net-banking/delete_customer…
CVE-2022-40118 — CVSS 9.8 (critical): Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the cust_id parameter at /net-banking/send_funds_acti…
CVE-2022-40119 — CVSS 9.8 (critical): Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the search_term parameter at /net-banking/transaction…
CVE-2022-40120 — CVSS 9.8 (critical): Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the search_term parameter at /net-banking/customer_tr…
CVE-2022-40121 — CVSS 9.8 (critical): Online Banking System v1.0 was discovered to contain a SQL injection vulnerability via the search parameter at /net-banking/manage_customers…
CVE-2022-27991 — CVSS 6.5 (medium): Online Banking System in PHP v1 was discovered to contain multiple SQL injection vulnerabilities at /staff_login.php via the Staff ID and…