Aggregates CVE and security vulnerability intelligence across all open_source_sacco_management_system_project-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Common weakness patterns include vendor risk sql injection, with potential vendor impact data exposure across vendor surface production workloads and vendor surface software deployment use cases.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2022-42218 | Open Source SACCO Management System v1.0 vulnerable to SQL Injection via /sacco_shield/manage_loan.php. | [email protected] | 7.2 | 0.31% | 2022-10-18 | 2025-05-13 |
| CVE-2022-42143 | Open Source SACCO Management System v1.0 is vulnerable to SQL Injection via /sacco_shield/manage_payment.php. | [email protected] | 7.2 | 0.33% | 2022-10-17 | 2025-05-14 |
| CVE-2022-41536 | Open Source SACCO Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /sacco_shield/manage_user.php. | [email protected] | 7.2 | 0.33% | 2022-10-14 | 2025-05-14 |
| CVE-2022-41535 | Open Source SACCO Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /sacco_shield/manage_borrower.php. | [email protected] | 7.2 | 0.32% | 2022-10-14 | 2025-05-14 |
| CVE-2022-41532 | Open Source SACCO Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /sacco_shield/ajax.php?action=delete_plan. | [email protected] | 7.2 | 0.33% | 2022-10-12 | 2025-05-20 |
| CVE-2022-41530 | Open Source SACCO Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /sacco_shield/ajax.php?action=delete_borrower. | [email protected] | 7.2 | 0.33% | 2022-10-12 | 2025-05-19 |
| CVE-2022-41515 | Open Source SACCO Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /sacco_shield/ajax.php?action=delete_payment. | [email protected] | 7.2 | 0.27% | 2022-10-07 | 2024-11-21 |
| CVE-2022-41514 | Open Source SACCO Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /sacco_shield/ajax.php?action=delete_loan. | [email protected] | 7.2 | 0.27% | 2022-10-07 | 2024-11-21 |