CVE-2026-5206 | code-projects Simple Gym Management System 1.0 Payment sql injection

Inserito da Angelo Barbosa | Mar 31, 2026 | CVE

A vulnerability identified as critical has been detected in code-projects Simple Gym Management System 1.0. This vulnerability affects unknown code of the component Payment Handler. The manipulation of the argument Payment_id/Amount/customer_id/payment_type/customer_name leads to sql injection.

This vulnerability is referenced as CVE-2026-5206. Remote exploitation of the attack is possible. Furthermore, an exploit is available.

CVE-2026-5206 | code-projects Simple Gym Management System 1.0 Payment sql injection

Post correlati

CVE-2024-41519 | Feripro up to 2.2.3 veranstaltungen school cross site scripting

CVE-2025-5078 | Campcodes Online Shopping Portal 1.0 /admin/subcategory.php Category sql injection

CVE-2024-0455 | mintplex-labs anything-llm up to 0.0.x server-side request forgery

CVE-2026-1430 | Syed Balkhi WP Lightbox 2 Plugin up to 3.0.6 on WordPress Setting cross site scripting