723 matches found
SQL Injection Vulnerability in MediPro's Township Government Portal System
MediPro Township Government Portal System is a website suitable for township government agencies to create local portals to publicize local resources, realize open government affairs and promote township grassroots informatization. A SQL injection vulnerability exists in MediPro Township Governme...
Online TV Database SQL Injection Vulnerability
Online TV Database is a set of online TV program database. A SQL injection vulnerability exists in the 'ID' parameter in Online TV Database version 2011. The vulnerability stems from a database-based application that lacks validation of externally entered SQL statements. An attacker can exploit...
SQL Injection Vulnerability in the Background Administration C***t.asp Page of Angel School Training Website System
Angel school training website system is an open source website management system. Angel school training website system background management Ct.asp page there is a SQL injection vulnerability , attackers can use the vulnerability to obtain sensitive information in the database...
PowerSoft Agile Development Framework 7.0.6 suffers from SQL Injection Vulnerability
PowerSoft Agile Development Framework is a set of software system projects based on intelligent scalable components, suitable for enterprise management software and Internet platform back-end system development, the framework provides a perfect permissions role management functions, rapid...
SQL Injection Vulnerability in Laike E-commerce System (CNVD-2020-01258)
Laike e-commerce with independent copyright system, is an integrated e-commerce system all the functions of the platform. A SQL injection vulnerability exists in Laike E-commerce system, which can be exploited by attackers to access sensitive database information...
SQL injection vulnerability in seacms backend (CNVD-2019-43675)
Ocean CMS seacms is a video-on-demand system based on PHP+MySql technology. There is a SQL injection vulnerability in the backend of seacms, which can be exploited by attackers to obtain sensitive database information...
pixelpost SQL injection vulnerability (CNVD-2019-39945)
pixelpost is a set of PHP and MySQL based , scalable open source photo blog application . A SQL injection vulnerability exists in pixelpost version 1.7.1-5, which stems from a lack of validation of externally-entered SQL statements in the database-based application and can be exploited by an...
Cisco Firepower Management Center SQL Injection Vulnerability (CNVD-2019-34736)
Cisco Firepower Management Center FMC is a new generation of firewall management center software from Cisco. A SQL injection vulnerability exists in the web-based management interface in Cisco FMC, which stems from the program's failure to properly validate input. A remote attacker could exploit...
SugarCRM pmse_Inbox Module SQL Injection Vulnerability
SugarCRM is a set of open source customer relationship management software . A SQL injection vulnerability exists in the pmseInbox module of SugarCRM. The vulnerability stems from a lack of input validation. An attacker can exploit this vulnerability to inject custom PHP code...
SugarCRM Administration Module SQL Injection Vulnerability
SugarCRM is a set of open source customer relationship management software . A SQL injection vulnerability exists in the Administration module of SugarCRM. The vulnerability stems from a lack of input validation. An attacker can exploit this vulnerability to inject custom PHP code...
PT-2019-3380 · Cisco · Cisco Firepower Management Center
Name of the Vulnerable Software and Affected Versions: Cisco Firepower Management Center FMC Software affected versions not specified Description: The issue is related to improper input validation in the web-based management interface, allowing an authenticated, remote attacker to execute arbitra...
CVE-2017-18602
The examapp plugin 1.0 for WordPress has SQL injection via the wp-admin/admin.php?page=examappUserResult id parameter...
LibreNMS SQL Injection Vulnerability (CNVD-2019-32206)
LibreNMS is a PHP/MYSQL/SNMP-based open source monitoring tool . A SQL injection vulnerability exists in LibreNMS 1.47 and earlier versions, which can be exploited by an authenticated attacker to corrupt database queries to extract or manipulate data...
WordPress pie-register plugin SQL injection vulnerability
WordPress is a blogging platform developed in PHP by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. pie-register is a plugin for user registration and login form customization. A SQL injection vulnerability exists in WordPress...
SQL injection vulnerability exists in it***.php of website building system of Shanghai To-Mei Information Technology Co.
Ltd. is a company dedicated to corporate or entrepreneurial image design and online business expansion services. There is a SQL injection vulnerability in it.php, which can be exploited by attackers to obtain sensitive information from the database...
SQL Injection Vulnerability in Acme CMS Backend vi***.php
Acme CMS is a CMS builder using PHP + Mysql architecture, multi-language, responsive display, suitable for personal website construction. Aike CMS background vi.php SQL injection vulnerability, attackers can use the vulnerability to obtain database sensitive information...
SQL injection vulnerability in Five Fingers CMS co***.php page
Five Fingers CMS is a high-performance open source content management system that supports LNAMP architecture. Five Fingers CMS co.php page SQL injection vulnerability, an attacker can use the vulnerability to obtain sensitive database information...
BlueCMS SQL Injection Vulnerability
BlueCMS is a content management system CMS based on PHP and MySQL. A SQL injection vulnerability exists in BlueCMS version 1.6. A remote attacker can exploit this vulnerability to execute arbitrary SQL commands...
SQL Injection Vulnerability in semcms Backend
SemCms is an open source foreign trade enterprise website management system, mainly used for foreign trade enterprises. semcms background SQL injection vulnerability , attackers can use the vulnerability to obtain sensitive database information...
SQL Injection Vulnerability in Xinhuo Collaboration Office System ka***/ka***.php
Xinhuo Co-operation Office System is an office system based on php and mysql development. SQL injection vulnerability exists in ka/ka.php, which can be exploited by attackers to obtain sensitive information from the database...