SQL Injection Vulnerability in Chengdu Newline Plus Technology Co.

Chengdu New Line Plus Technology Co., Ltd. is a company that provides website construction and internet marketing services for enterprises and institutions in Chengdu. Chengdu New Line Plus Technology Co., Ltd. website building system has a SQL injection vulnerability, which can be exploited by...

SQL Injection Vulnerability in the Website Building System of Changzhou Oceanic Network Technology Co.

Changzhou Oceanus Network Technology Co., Ltd. was founded in March 2005, is committed to creating a corporate brand website custom design and development of the industry's influential brand enterprises. There is a SQL injection vulnerability in the website system of Changzhou Oceanic Network...

TuziCMS v3.0 Ma*** Ar***.cl***.php suffers from SQL injection vulnerability

TuziCMS is an enterprise website management system based on ThinkPHP 3.2 framework. TuziCMS v3.0 Ma Ar.cl.php suffers from a SQL injection vulnerability. An attacker can exploit the vulnerability to obtain sensitive database information...

SQL injection vulnerability in freecms member center (CNVD-2020-33181)

FreeCMS is a secure, practical effective and scalable CMS system. A SQL injection vulnerability exists in FreeCMS Member Center, which can be exploited by attackers to obtain sensitive information from the database...

SQL Injection Vulnerability in PatrolFlow of Beijing Byzoro Network Technology Co.

PatrolFlow is a multi-service security gateway intelligent management platform of Beijing Byzoro Network Technology Co. A SQL injection vulnerability exists in PatrolFlow of Beijing Byzoro Networks Technology Co. An attacker can exploit the vulnerability to obtain sensitive database information...

Xi'an Baolian Network Technology Co., Ltd. website building system suffers from SQL injection vulnerabilities (CNVD-2020-25104)

Xi'an Bailian Network Technology Co., Ltd. is a technology-based company specializing in electromechanical enterprise management software development and website design. Xi'an Bailian Network Technology Co., Ltd. website building system has a SQL injection vulnerability, which can be exploited by...

Shantou Sanyu Technology Co., Ltd. website building system suffers from SQL injection vulnerability.

Ltd. is a company that focuses on designing, producing and providing personalized e-commerce solutions for enterprises. Ltd. website building system suffers from SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...

SQL injection vulnerability in the pi***.asp page parameter of Enterprise First's website building system ma***.asp

Enterprise First website builder is a free website builder system provided by Enterprise First. SQL injection vulnerability exists in the ma.asp page pi parameter of the Enterprise First website building system, which can be exploited by an attacker to obtain sensitive information from the databa...

Aiwo Real Estate System v4.7 Information Disclosure Vulnerability

Sticky Cat is an extremely light, minimalist general-purpose PHP website system. AiWo Real Estate System v4.7 has information leakage vulnerability, attackers can use the vulnerability to obtain database information...

SQL Injection Vulnerability in Website Building System of Shanghai Bonning Network Technology Co.

Shanghai Bonning Network Technology Co., Ltd. is a company dedicated to the application and promotion of website building and e-commerce for enterprises and institutions. Shanghai Bonning Network Technology Co., Ltd. website building system has SQL injection vulnerability, attackers can use the...

SQL Injection Vulnerability in Flash cms /zj/html.asp Page

Flash Flash cms is Zibo Flash Network Technology Co., Ltd. developed a corporate website system. A SQL injection vulnerability exists in the Flash cms /zj/html.asp page. The vulnerability stems from the program's failure to effectively filter user-submitted data. An attacker can exploit the...

ShopsN v2.0 frontend CartController.class.php file order_form function has SQL injection vulnerability

ShopsN free version of the B2C e-commerce is a product of Shanghai Yisu Network Technology Co. An open source online store in line with enterprise-class commercial standards of the whole network system. In ShopsN v2.0 beta2 version of the front-end CartController.class.php in the orderform functi...

SQL Injection Vulnerability in eml Enterprise Address Book Management System Version 4.3

EML enterprise customer relationship management system , is based on Linux open kernel and Apache based Php + Mysql intelligent B / S interactive service system . EML Enterprise Contacts Management System v4.3 version of the SQL injection vulnerability. Attackers can use this vulnerability to...

Joomla MultiTier Component SQL Injection Vulnerability

Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the Joomla MultiTier component. An attacker can exploit the vulnerability to access or modify database data...

Cisco Cloud Network Automation Provisioner SQL Injection Vulnerability

Cisco Cloud Network Automation Provisioner is a suite of cloud network automation provisioning software. A SQL injection vulnerability exists in Cisco Cloud Network Automation Provisioner, which allows remote attackers to exploit the vulnerability by submitting specially crafted SQL queries to...

EC-CUBE plugin "Help plug-in" vulnerable to SQL injection

Overview EC-CUBE plugin "Help plug-in" provided by Cuore contains an SQL injection vulnerability CWE-89. Gen Sato of TRADE WORKS Co.,Ltd. Security Dept. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact...

Accentis 'SIDX' Parameter SQL Injection Vulnerability

Accentis is a suite of management software for ERP, CRM, payroll, production and inventory management. Accentis fails to properly filter the 'SIDX' parameter, allowing remote attackers to exploit the vulnerability to submit specially crafted SQL query operations or obtain database data...

Symantec Web Gateway SQL Injection Vulnerability (CNVD-2015-06066)

Symantec Web Gateway is a suite of web content filtering software. The software provides web content filtering and data leakage protection. A SQL injection vulnerability exists in Symantec Web Gateway, which allows remote attackers to exploit the vulnerability by submitting specially crafted SQL...

SQL Injection Vulnerability in OAID Parameter of Haitian OA System/Documents/OA_WordDocDisplay.asp Page

Haitian OA network office system is suitable for enterprises and institutions of the general-purpose network office software, the system adopts the leading B / S browser / server mode of operation, so that the network office is not subject to geographical restrictions. A SQL injection vulnerabili...