Exploit for SQL Injection in Phpjabbers Cinema_Booking_System

CVE-2024-57430 An SQL injection vulnerability in the pjActionG...

WordPress plugin String locator 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

PT-2024-20229 · Jsherp · Jsherp

Name of the Vulnerable Software and Affected Versions: jshERP version 3.3 Description: The issue concerns a SQL Injection vulnerability. Specifically, the findInOutMaterialCount function in com.jsh.erp.controller.DepotHeadController does not adequately filter the column and order parameters,...

jshERP SQL Injection Vulnerability

jshERP Huaxia ERP is a homegrown ERP system developed by a Chinese individual developer, Ji Sheng Hua. A SQL injection vulnerability exists in jshERP v3.3, which is caused by insufficient filtering of the "column" and "order" parameters...

CVE-2023-41539

phpjabbers Business Directory Script 3.2 is vulnerable to SQL Injection via the column parameter...

Business Directory Script SQL注入漏洞

Business Directory Script is an easy to use PHP directory script for anyone who wants to create a business directory. A security vulnerability exists in phpjabbers Business Directory Script version 3.2, which stems from the vulnerability to SQL injection via the column parameter...

CVE-2023-40749

PHPJabbers Food Delivery Script v3.0 is vulnerable to SQL Injection in the "column" parameter of index.php...

CVE-2023-40749

PHPJabbers Food Delivery Script v3.0 is vulnerable to SQL Injection in the "column" parameter of index.php...

Food Delivery Script SQL注入漏洞

Food Delivery Script is an online food ordering system. A security vulnerability exists in PHPJabbers Food Delivery Script version v3.0, which is caused by a SQL injection vulnerability in the "column" parameter of the index.php file...

CVE-2023-36311

There is a SQL injection SQLi vulnerability in the "column" parameter of index.php in PHPJabbers Document Creator v1.0...

CVE-2023-36310

There is a Cross Site Scripting XSS vulnerability in the "column" parameter of index.php in PHPJabbers Document Creator v1.0...

CVE-2023-36311

There is a SQL injection SQLi vulnerability in the "column" parameter of index.php in PHPJabbers Document Creator v1.0...

CVE-2023-36310

There is a Cross Site Scripting XSS vulnerability in the "column" parameter of index.php in PHPJabbers Document Creator v1.0...

PT-2023-25527 · Phpjabbers · Phpjabbers Document Creator

Name of the Vulnerable Software and Affected Versions: PHPJabbers Document Creator version 1.0 Description: There is a SQL injection SQLi vulnerability in the column parameter of the "index.php" endpoint. This issue allows for potential exploitation by injecting malicious SQL code. Recommendation...

CVE-2023-36310

There is a Cross Site Scripting XSS vulnerability in the "column" parameter of index.php in PHPJabbers Document Creator v1.0...

CVE-2022-25517

MyBatis plus v3.4.3 was discovered to contain a SQL injection vulnerability via the Column parameter in /core/conditions/AbstractWrapper.java. NOTE: the vendor's position is that the reported execution of a SQL statement was intended behavior...

CVE-2022-25517

MyBatis plus v3.4.3 was discovered to contain a SQL injection vulnerability via the Column parameter in /core/conditions/AbstractWrapper.java. NOTE: the vendor's position is that the reported execution of a SQL statement was intended behavior...

Sql injection

MyBatis plus v3.4.3 was discovered to contain a SQL injection vulnerability via the Column parameter in /core/conditions/AbstractWrapper.java...

PT-2022-17346 · Unknown · Mybatis Plus

Name of the Vulnerable Software and Affected Versions: MyBatis plus version 3.4.3 Description: The issue concerns a SQL injection vulnerability via the Column parameter in the /core/conditions/AbstractWrapper.java file. It is noted that the vendor considers the reported execution of a SQL stateme...

CVE-2022-25517

MyBatis plus v3.4.3 was discovered to contain a SQL injection vulnerability via the Column parameter in /core/conditions/AbstractWrapper.java. NOTE: the vendor's position is that the reported execution of a SQL statement was intended behavior...