simple_client_management_system_project CVE Vulnerabilities & Metrics

Focus on simple_client_management_system_project vulnerabilities and metrics.

Last updated: 08 Mar 2025, 23:25 UTC

About simple_client_management_system_project Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with simple_client_management_system_project. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Global CVE Overview

Total simple_client_management_system_project CVEs: 19
Earliest CVE date: 01 Feb 2022, 14:15 UTC
Latest CVE date: 22 Dec 2022, 02:15 UTC

Latest CVE reference: CVE-2021-43657

Rolling Stats

30-day Count (Rolling): 0
365-day Count (Rolling): 0

Calendar-based Variation

Calendar-based Variation compares a fixed calendar period (e.g., this month versus the same month last year), while Rolling Growth Rate uses a continuous window (e.g., last 30 days versus the previous 30 days) to capture trends independent of calendar boundaries.

Variations & Growth

Month Variation (Calendar): 0%
Year Variation (Calendar): 0%

Month Growth Rate (30-day Rolling): 0.0%
Year Growth Rate (365-day Rolling): 0.0%

Monthly CVE Trends (current vs previous Year)

Annual CVE Trends (Last 20 Years)

Critical simple_client_management_system_project CVEs (CVSS ≥ 9) Over 20 Years

CVSS Stats

Average CVSS: 6.89

Max CVSS: 7.5

Critical CVEs (≥9): 0

CVSS Range vs. Count

Range	Count
0.0-3.9	2
4.0-6.9	0
7.0-8.9	17
9.0-10.0	0

CVSS Distribution Chart

Top 5 Highest CVSS simple_client_management_system_project CVEs

These are the five CVEs with the highest CVSS scores for simple_client_management_system_project, sorted by severity first and recency.

CVE-2022-29984 simple_client_management_system_project Published on 12 May 2022, 15:15 UTC (CVSS: 7.5)
Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=client/view_client&id=.
CVE-2022-29983 simple_client_management_system_project Published on 12 May 2022, 15:15 UTC (CVSS: 7.5)
Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=invoice/view_invoice&id=.
CVE-2022-29982 simple_client_management_system_project Published on 12 May 2022, 15:15 UTC (CVSS: 7.5)
Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/maintenance/manage_service.php?id=.
CVE-2022-29981 simple_client_management_system_project Published on 12 May 2022, 15:15 UTC (CVSS: 7.5)
Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Users.php?f=delete.
CVE-2022-29980 simple_client_management_system_project Published on 12 May 2022, 15:15 UTC (CVSS: 7.5)
Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=user/manage_user&id=.

All CVEs for simple_client_management_system_project

CVE-2021-43657 simple_client_management_system_project vulnerability CVSS: 0 22 Dec 2022, 02:15 UTC

A Stored Cross-site scripting (XSS) vulnerability via MAster.php in Sourcecodetester Simple Client Management System (SCMS) 1.0 allows remote attackers to inject arbitrary web script or HTML via the vulnerable input fields.

CVE-2022-29984 simple_client_management_system_project vulnerability CVSS: 7.5 12 May 2022, 15:15 UTC

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=client/view_client&id=.

CVE-2022-29983 simple_client_management_system_project vulnerability CVSS: 7.5 12 May 2022, 15:15 UTC

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=invoice/view_invoice&id=.

CVE-2022-29982 simple_client_management_system_project vulnerability CVSS: 7.5 12 May 2022, 15:15 UTC

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/maintenance/manage_service.php?id=.

CVE-2022-29981 simple_client_management_system_project vulnerability CVSS: 7.5 12 May 2022, 15:15 UTC

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Users.php?f=delete.

CVE-2022-29980 simple_client_management_system_project vulnerability CVSS: 7.5 12 May 2022, 15:15 UTC

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=user/manage_user&id=.

CVE-2022-29979 simple_client_management_system_project vulnerability CVSS: 7.5 12 May 2022, 15:15 UTC

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_designation.

CVE-2022-29751 simple_client_management_system_project vulnerability CVSS: 7.5 12 May 2022, 15:15 UTC

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_client.

CVE-2022-29750 simple_client_management_system_project vulnerability CVSS: 7.5 12 May 2022, 15:15 UTC

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_service.

CVE-2022-29749 simple_client_management_system_project vulnerability CVSS: 7.5 12 May 2022, 15:15 UTC

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/classes/Master.php?f=delete_invoice.

CVE-2022-29748 simple_client_management_system_project vulnerability CVSS: 7.5 12 May 2022, 15:15 UTC

Simple Client Management System 1.0 is vulnerable to SQL Injection via \cms\admin?page=client/manage_client&id=.

CVE-2022-29747 simple_client_management_system_project vulnerability CVSS: 7.5 12 May 2022, 15:15 UTC

Simple Client Management System 1.0 is vulnerable to SQL Injection via /cms/admin/?page=invoice/manage_invoice&id= // Leak place ---> id.

CVE-2021-43484 simple_client_management_system_project vulnerability CVSS: 7.5 31 Mar 2022, 19:15 UTC

A Remote Code Execution (RCE) vulnerability exists in Simple Client Management System 1.0 in create.php due to the failure to validate the extension of the file being sent in a request.

CVE-2021-43506 simple_client_management_system_project vulnerability CVSS: 7.5 31 Mar 2022, 17:15 UTC

An SQL Injection vulnerability exists in Sourcecodester Simple Client Management System 1.0 via the password parameter in Login.php.

CVE-2021-43505 simple_client_management_system_project vulnerability CVSS: 3.5 31 Mar 2022, 17:15 UTC

Multiple Cross Site Scripting (XSS) vulnerabilities exist in Ssourcecodester Simple Client Management System v1 via (1) Add new Client and (2) Add new invoice.

CVE-2022-26285 simple_client_management_system_project vulnerability CVSS: 7.5 21 Mar 2022, 23:15 UTC

Simple Subscription Website v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in the apply endpoint. This vulnerability allows attackers to dump the application's database via crafted HTTP requests.

CVE-2022-26284 simple_client_management_system_project vulnerability CVSS: 7.5 21 Mar 2022, 23:15 UTC

Simple Client Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter in the manage_client endpoint. This vulnerability allows attackers to dump the application's database via crafted HTTP requests.

CVE-2021-43510 simple_client_management_system_project vulnerability CVSS: 7.5 01 Feb 2022, 14:15 UTC

SQL Injection vulnerability exists in Sourcecodester Simple Client Management System 1.0 via the username field in login.php.

CVE-2021-43509 simple_client_management_system_project vulnerability CVSS: 7.5 01 Feb 2022, 14:15 UTC

SQL Injection vulnerability exists in Sourcecodester Simple Client Management System 1.0 via the id parameter in view-service.php.