Sql injection

A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been declared as critical. This vulnerability affects the function prepare of the file admin/pay.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely...

CVE-2024-0883 SourceCodester Online Tours & Travels Management System pay.php prepare sql injection

A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been declared as critical. This vulnerability affects the function prepare of the file admin/pay.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely...

CVE-2024-0883 SourceCodester Online Tours & Travels Management System pay.php prepare sql injection

A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been declared as critical. This vulnerability affects the function prepare of the file admin/pay.php. The manipulation of the argument id leads to sql injection. The attack can be initiated remotely...

CVE-2021-26739

SQL Injection vulnerability in pay.php in millken doyocms 2.3, allows attackers to execute arbitrary code, via the attribute parameter...

Sql injection

SQL Injection vulnerability in pay.php in millken doyocms 2.3, allows attackers to execute arbitrary code, via the attribute parameter...

CVE-2021-26739

The CVE-2021-26739 entry concerns a SQL injection in pay.php of Millken Doyocms 2.3. The underlying issue is unvalidated input via the attribute parameter, enabling arbitrary SQL execution, with potential high impact per the NVD metrics (base CVSSv3.1 9.8, network attack, no authentication, high ...

CVE-2018-20985

The wp-payeezy-pay plugin before 2.98 for WordPress has local file inclusion in pay.php, donate.php, donate-rec, and pay-rec...

CVE-2018-20985

CVE-2018-20985 affects the WordPress plugin WP Payeezy Pay (before 2.98). Multiple sources confirm a local file inclusion (LFI) vulnerability in pay.php, donate.php, donate-rec, and pay-rec, caused by insufficient input verification. The NVD entry describes LFI with potential partial/full confide...

CVE-2019-9762

A SQL Injection was discovered in PHPSHE 1.7 in include/plugin/payment/alipay/pay.php with the parameter id. The vulnerability does not need any authentication...

tradeindiaresearch.com XSS vulnerability

Open Bug Bounty ID: OBB-509495 Description| Value ---|--- Affected Website:| tradeindiaresearch.com Open Bug Bounty Program:| Not created yet Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1 CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N...

forskolinlife.com XSS vulnerability

Open Bug Bounty ID: OBB-440081 Description| Value ---|--- Affected Website:| forskolinlife.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

a1000yoga.com XSS vulnerability

Open Bug Bounty ID: OBB-133793 Description| Value ---|--- Affected Website:| a1000yoga.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

CSDJCMS系统 app/controllers/user/pay.php SQL注入漏洞

No description provided by source...

Doyo 2.3 /pay.php SQL注入漏洞

No description provided by source...

wordpress pay with tweet plugin <= 1.1 - Multiple Vulnerabilities

No description provided by source. Exploit Title: Wordpress Pay With Tweet plugin = 1.1 Multiple Vulnerabilities Date: 01/06/2012 Author: Gianluca Brindisi gATbrindi.si @gbrindisi http://brindi.si/g/ Software Link: http://downloads.wordpress.org/plugin/pay-with-tweet.1.1.zip Version: 1.1 1 Blind...

doyo 2.3 /pay.php SQL注入漏洞

pay.php 文件中的escape只是简单的对传入参数头尾加入单引号由于传入参数是序列化后再简单的escape，因此闭合escape单引号，序列化双引号后可引发注入. doyo 2.3...

WordPress Plugin Pay with Tweet 1.1 - Multiple Vulnerabilities

WordPress Plugin Pay with Tweet 1.1 - Multiple Vulnerabilities Exploit Title: Wordpress Pay With Tweet plugin XSS After submitting the tweet: ?title=XSS&dl=REDIRECT-TO-URL%27"XSS The final download link will be replaced with REDIRECT-TO-URL POC:...