Huamei Zhuosoft Detects SQL Injection Vulnerability in Resource Service Platform

Hunan Huamei Information System Co., Ltd. is an IT services and industry solutions provider for government market regulators, inspection and testing organizations, certification and accreditation companies, as well as corporate laboratories and other industry clients. Huamei Zhuo soft testing...

SQL Injection Vulnerability in YouDianCMS v8.0 Frontend

Youdiancms Enterprise Website Management System is an enterprise website building system developed by Changsha Youdian Software Technology Co. YouDianCMS v8.0 has a SQL injection vulnerability in the frontend, which can be exploited by attackers to obtain sensitive information from the database...

SQL Injection Vulnerability in the Backend of Kewe Polymerization Navigation System v1.7

Kewe Polymerization Navigation System is a full-featured web site navigation system made with PHP+MYSQL. A SQL injection vulnerability exists in the backend of Kovi Convergent Navigation v1.7. A remote attacker can exploit this vulnerability to obtain sensitive database information...

SQL Injection Vulnerability in B2C_UQ Cloud Business System (CNVD-2019-18480)

UQ Cloud Business System B2C version is a compact e-commerce system, the platform is developed by PHP7.0+Mysql. B2CUQ Cloud Business System suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...

SQL Injection Vulnerability in Armitage CMS

JX CMS Jxcms is a website construction and management system independently developed by Taizhou JX Information Technology Co. A SQL injection vulnerability exists in the background of Jxcms. An attacker can exploit the vulnerability to obtain sensitive information from the database...

ShopsN single merchant b2c mall system Pu***.class.php file has SQL injection vulnerability

ShopsN single merchant b2c mall system is an open source online store system developed using PHP + MySQL. ShopsN single merchant b2c mall system Pu.class.php file SQL injection vulnerability, an attacker can use the vulnerability to obtain database sensitive information...

SQL injection vulnerability in Tpshop v3.5 To***.php page (CNVD-2019-17503)

Tpshop is a set of multi-merchant mode developed by Shenzhen Soleil Networks Limited mall system. A SQL injection vulnerability exists in the Tpshop v3.5 To.php page. Attackers can use the vulnerability to obtain sensitive information in the database...

SQL injection vulnerability in Tpshop v3.5 Us***.php page (CNVD-2019-17500)

Tpshop is a set of multi-merchant mode developed by Shenzhen Soleil Networks Limited mall system. A SQL injection vulnerability exists in the Tpshop v3.5 Us.php page. Attackers can use the vulnerability to obtain sensitive information in the database...

SQL injection vulnerability in the backend cm***_fe***_an***.php file of VANOC enterprise website management system.

Vanno enterprise website management system is an asp + access for the development of asp enterprise website source code. Vanno enterprise website management system background cmfean.php file SQL injection vulnerability, attackers can use the vulnerability to obtain database sensitive information...

SQL injection vulnerability in the id parameter of the ne***.asp page of the website builder system of Chengdu Power Infinite Technology Co.

Chengdu Power Unlimited Technology Co., Ltd. is an Internet company that builds marketing websites and Internet marketing services for small and medium-sized enterprises. Chengdu Power Infinite Technology Co., Ltd. building system ne.asp page id parameter exists SQL injection vulnerability, an...

SQL Injection Vulnerability in co***_ru***_ed***.php of Acme CMS Backend

Acme CMS is a full-featured, PHP + Mysql architecture, multi-language, responsive display, suitable for personal website construction CMS building system. There is a SQL injection vulnerability in the backend corued.php of Acme CMS, which can be exploited by attackers to obtain sensitive...

SQL Injection Vulnerability in co***_ru***.php of Acme CMS Backend

Acme CMS is a full-featured, PHP + Mysql architecture, multi-language, responsive display, suitable for personal website construction CMS building system. There is a SQL injection vulnerability in the backend coru.php of Acme CMS, which can be exploited by attackers to obtain sensitive database...

SQL Injection Vulnerability in na***_ed***.php of Acme CMS Backend

Acme CMS is a full-featured, PHP + Mysql architecture, multi-language, responsive display, suitable for personal website construction CMS building system. There is a SQL injection vulnerability in the backend naed.php of Acme CMS, which can be exploited by attackers to obtain sensitive database...

Aiwo Real Estate System v4.7 Information Disclosure Vulnerability

Sticky Cat is an extremely light, minimalist general-purpose PHP website system. AiWo Real Estate System v4.7 has information leakage vulnerability, attackers can use the vulnerability to obtain database information...

doorGets SQL Injection Vulnerability (CNVD-2019-13802)

DoorGets is a free and open source content management system. A SQL injection vulnerability exists in /doorgets/app/requests/user/modulecategoryRequest.php in doorGets 7.0. This vulnerability can be exploited by a user with remote backend administrator privileges or a user with manage...

doorGets SQL Injection Vulnerability (CNVD-2019-13796)

DoorGets is a free and open source content management system. A SQL injection vulnerability exists in /doorgets/app/views/ajax/commentView.php in doorGets 7.0. A remote, unauthorized attacker can exploit this vulnerability to obtain sensitive database information...

CVE-2019-11621

doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/requests/user/configurationRequest.php when action=network. A remote background administrator privilege user or a user with permission to manage network configuration could exploit the vulnerability to obtain database sensitive...

CVE-2019-11620

doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/requests/user/modulecategoryRequest.php. A remote background administrator privilege user or a user with permission to manage modulecategory could exploit the vulnerability to obtain database sensitive information via...

SQL Injection Vulnerability in Website Building System of Ningbo Mufeng Network Technology Co.

Ningbo Mufeng Network Technology Co., Ltd. is a website design company with the core business of website construction, website production, website development, graphic design and corporate branding in Ningbo. There is a SQL injection vulnerability in the website building system of Ningbo Mufeng...

Heilongjiang Yitong Network Technology Development Co., Ltd. website building system has SQL injection vulnerability

Heilongjiang Yitong Network Technology Development Co., Ltd. is an enterprise website building system. There is a SQL injection vulnerability in Heilongjiang Yitong Network Technology Development Co., Ltd. that can be exploited by attackers to obtain sensitive information from the database...