{"vulnerability": "CVE-2020-2928", "sightings": [{"uuid": "07c0b263-240e-4d69-b024-99fcc444a304", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29288", "type": "seen", "source": "https://t.me/cibsecurity/17067", "content": "\u203c CVE-2020-29288 \u203c\n\nAn SQL injection vulnerability was discovered in Gym Management System In manage_user.php file, GET parameter 'id' is vulnerable.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-03T00:55:25.000000Z"}, {"uuid": "d2db79a9-5322-4d8a-85ed-7266eca37fa2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29283", "type": "seen", "source": "https://t.me/cibsecurity/17066", "content": "\u203c CVE-2020-29283 \u203c\n\nAn SQL injection vulnerability was discovered in Online Doctor Appointment Booking System PHP and Mysql via the q parameter to getuser.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-03T00:55:24.000000Z"}, {"uuid": "33de7ad5-a9b8-41cc-9264-bfd17bc94236", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29285", "type": "seen", "source": "https://t.me/cibsecurity/17065", "content": "\u203c CVE-2020-29285 \u203c\n\nSQL injection vulnerability was discovered in Point of Sales in PHP/PDO 1.0, which can be exploited via the id parameter to edit_category.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-03T00:55:23.000000Z"}, {"uuid": "daaf9e7a-e82b-4103-962f-ef9076c03a23", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29284", "type": "seen", "source": "https://t.me/cibsecurity/17064", "content": "\u203c CVE-2020-29284 \u203c\n\nThe file view-chair-list.php in Multi Restaurant Table Reservation System 1.0 does not perform input validation on the table_id parameter which allows unauthenticated SQL Injection. An attacker can send malicious input in the GET request to /dashboard/view-chair-list.php?table_id= to trigger the vulnerability.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-03T00:55:22.000000Z"}, {"uuid": "c4ca83f2-e16a-4e9b-bdf6-ca817b6e8d62", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29282", "type": "seen", "source": "https://t.me/cibsecurity/17063", "content": "\u203c CVE-2020-29282 \u203c\n\nSQL injection vulnerability in BloodX 1.0 allows attackers to bypass authentication.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-03T00:55:21.000000Z"}, {"uuid": "0b3ef11c-d75a-46c1-9ea4-11f67bacc62d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29287", "type": "seen", "source": "https://t.me/cibsecurity/17062", "content": "\u203c CVE-2020-29287 \u203c\n\nAn SQL injection vulnerability was discovered in Car Rental Management System v1.0 can be exploited via the id parameter in view_car.php or the car_id parameter in booking.php.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-03T00:55:20.000000Z"}, {"uuid": "45bcefb0-defc-422d-b823-135107ee4347", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2020-29280", "type": "seen", "source": "https://t.me/cibsecurity/17061", "content": "\u203c CVE-2020-29280 \u203c\n\nThe Victor CMS v1.0 application is vulnerable to SQL injection via the 'search' parameter on the search.php page.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-12-03T00:55:19.000000Z"}]}