Xzy0193

**Name of the Vulnerable Software and Affected Versions** Judging Management System version 1.0 **Description** The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the `sid` parameter at the "/php-jms/updateview.php" API endpoint. **Recommendations** For Judging Management System version 1.0, as a temporary workaround, consider restricting access to the `/php-jms/updateview.php` API endpoint until a patch is available. Avoid using the `sid` parameter in this endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Judging Management System version 1.0 **Description** The issue is related to a SQL injection vulnerability. This vulnerability can be exploited via the `sid` parameter at the "/php-jms/updateTxtview.php" API endpoint. **Recommendations** For Judging Management System version 1.0, as a temporary workaround, consider restricting access to the `/php-jms/updateTxtview.php` API endpoint until a patch is available. Avoid using the `sid` parameter in this endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Judging Management System version 1.0 **Description** A SQL injection issue was found in the Judging Management System. The vulnerability can be exploited via the `sid` parameter at the "/php-jms/updateBlankTxtview.php" API endpoint. **Recommendations** For Judging Management System version 1.0, avoid using the `sid` parameter in the "/php-jms/updateBlankTxtview.php" API endpoint until the issue is resolved. As a temporary workaround, consider restricting access to the "/php-jms/updateBlankTxtview.php" endpoint to minimize the risk of exploitation.