9778 matches found
PHP Scripts Mall Professional Service Script SQL Injection Vulnerability (CNVD-2018-00489)
Professional Service Script is a script from PHP Scripts Mall with search, task creation and task management features. A SQL injection vulnerability exists in PHP Scripts Mall Professional Service Script. A remote attacker can exploit this vulnerability by using the id parameter in admin/review.p...
PHP Scripts Mall Single Theater Booking SQL Injection Vulnerability
PHP Scripts Mall Single Theater Booking is an open source theater script. PHP Scripts Mall Single Theater Booking suffers from a SQL injection vulnerability. A remote attacker can exploit this vulnerability by sending the 'movieid' parameter to the admin/movieview.php file to obtain the username ...
CVE-2017-17892
Readymade Video Sharing Script has SQL Injection via the viewsubs.php chnlid parameter or the searchvideo.php search parameter...
CVE-2017-17870
The JBuildozer extension 1.4.1 for Joomla! has SQL Injection via the appid parameter in an entriessearch action...
Dolibarr ERP/CRM SQL Injection Vulnerability (CNVD-2018-01643)
Dolibarr ERP/CRM is a Web-based enterprise resource planning ERP and customer relationship management CRM system from the Dolibarr Foundation in France. The system can be used to manage products, inventory, invoices, orders, and more. An SQL injection vulnerability exists in the...
SQL Injection Vulnerability in MacCMS Version 8.x
MacCMS program is a fast shadow video building system that runs on PHP+MYSQL environment. A frontend SQL injection vulnerability exists in MacCMS version 8.x 2017-06-20, which can be exploited by attackers to obtain sensitive database information...
SQL injection vulnerability in the bill.class.php page of UQCMS Cloud Business B2B2C Multi-store System
UQCMS cloud business system is a B2B2C e-commerce software with the program using PHP+MYSQL and the template using smarty template. A SQL injection vulnerability exists in the bill.class.php page of the UQCMS Cloud Business B2B2C Multi-Store System due to the program's failure to adequately filte...
CVE-2017-16733
A SQL Injection issue was discovered in Ecava IntegraXor v 6.1.1030.1 and prior. The SQL Injection vulnerability has been identified, which an attacker can leverage to disclose sensitive information from the database...
Bus Booking Script SQL Injection Vulnerability
Bus Booking Script is an online bus booking management system based on PHP and MySQL. A SQL injection vulnerability exists in Bus Booking Script version 1.0. The vulnerability can be exploited to inject SQL commands by sending the 'txtname' parameter to the admin/index.php file...
Quest NetVault Backup SQL Injection Vulnerability (CNVD-2017-37631)
Quest NetVault Backup is a suite of data backup software from Quest Software, USA. A SQL injection vulnerability exists in the handling of GET method requests in versions of Quest NetVault Backup prior to 11.4.5, which stems from the program failing to properly detect user-submitted strings prior...
PHP Scripts Mall Entrepreneur Job Portal Script SQL Injection Vulnerability
PHP Scripts Mall Entrepreneur Job Portal Script is a set of PHP based recruitment, job search website scripts by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Entrepreneur Job Portal Script version 2.0.6. The vulnerability can be exploited by remote attackers to...
PHP Scripts Mall Advance Online Learning Management Script SQL Injection Vulnerability
PHP Scripts Mall Advance Online Learning Management Script is a set of PHP based online learning scripts from PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Advance Online Learning Management Script version 3.1. A remote attacker can exploit the vulnerability by...
PHP Scripts Mall Basic B2B Script SQL Injection Vulnerability
PHP Scripts Mall Basic B2B Script is a set of PHP-based B2B2 business-to-business transactional website scripts from PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Basic B2B Script version 2.0.8. A remote attacker can exploit the vulnerability by sending the 'id'...
FS Foodpanda Clone SQL Injection Vulnerability
FS Foodpanda Clone is a set of online food trading website scripts written using the PHP CodeIgniter framework. A SQL injection vulnerability exists in FS Foodpanda Clone version 1.0. A remote attacker can exploit this vulnerability to inject SQL commands...
FS Freelancer Clone SQL Injection Vulnerability
FS Freelancer Clone is a set of PHP and MySQL based scripts for freelancer online job search and recruitment websites. A SQL injection vulnerability exists in FS Freelancer Clone version 1.0. The vulnerability can be exploited by remote attackers to inject SQL commands by sending the 'u' paramete...
FS Grubhub Clone SQL Injection Vulnerability
FS Grubhub Clone is a set of PHP-based scripts for online food ordering websites. A SQL injection vulnerability exists in FS Grubhub Clone version 1.0. A remote attacker can exploit this vulnerability to inject SQL commands...
PHP Scripts Mall Facebook Clone Script SQL Injection Vulnerability
PHP Scripts Mall Facebook Clone Script is a set of PHP based social networking site scripts by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Facebook Clone Script version 1.0. The vulnerability can be exploited by remote attackers to inject SQL commands by sendi...
PHP Scripts Mall E-commerce MLM Software SQL Injection Vulnerability
PHP Scripts Mall E-commerce MLM Software is a PHP based e-commerce online marketing system from PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall E-commerce MLM Software version 1.0. A remote attacker can inject SQL into the PHP Scripts Mall E-commerce MLM Software...
DomainSale PHP Script SQL Injection Vulnerability
DomainSale PHP Script is a set of scripts for online domain name selling websites based on PHP and MySQL. A SQL injection vulnerability exists in DomainSale PHP Script version 1.0. The vulnerability can be exploited by remote attackers to inject SQL commands by sending the 'id' parameter to the...
FS Crowdfunding Script SQL Injection Vulnerability
FS Crowdfunding Script is a set of scripts for online crowdfunding websites based on PHP and MySQL. A SQL injection vulnerability exists in FS Crowdfunding Script version 1.0. A remote attacker can exploit the vulnerability by sending the 'id' parameter to the latestnewsdetails.php file to inject...