1. Home
  2. CVE Database
  3. CVE-2022-29304
HIGH · 8.8

CVE-2022-29304

Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /classes/master.php?f=delete_ Facility.

Vulnerability Description

Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /classes/master.php?f=delete_ Facility.

CVSS Score

8.8

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
Online Sports Complex Booking System ProjectOnline Sports Complex Booking System1.0

Related Weaknesses (CWE)

CWE-89

References

FAQ

What is CVE-2022-29304?

CVE-2022-29304 is a vulnerability with a CVSS score of 8.8 (HIGH). Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /classes/master.php?f=delete_ Facility.

How severe is CVE-2022-29304?

CVE-2022-29304 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2022-29304?

Check the references section above for vendor advisories and patch information. Affected products include: Online Sports Complex Booking System Project Online Sports Complex Booking System.