78 matches found
CVE-2015-10045 tutrantta project_todolist Database.php update sql injection
A vulnerability, which was classified as critical, was found in tutrantta projecttodolist. Affected is the function getAffectedRows/where/insert/update in the library library/Database.php. The manipulation leads to sql injection. The name of the patch is 194a0411bbe11aa4813f13c66b9e8ea403539141. ...
CVE-2015-10045
CVE-2015-10045 affects the tutrantta project_todolist, specifically the library/Database.php function getAffectedRows/where/insert/update. The issue is a SQL injection vulnerability reported as critical. A patch named 194a0411bbe11aa4813f13c66b9e8ea403539141 is recommended to fix the issue. Publi...
CVE-2015-10045 tutrantta project_todolist Database.php update sql injection
A vulnerability, which was classified as critical, was found in tutrantta projecttodolist. Affected is the function getAffectedRows/where/insert/update in the library library/Database.php. The manipulation leads to sql injection. The name of the patch is 194a0411bbe11aa4813f13c66b9e8ea403539141. ...
CVE-2022-30452
ShopWind = v3.4.2 has a Sql injection vulnerability in Database.php...
CVE-2022-30453
ShopWind = 3.4.2 has a RCE vulnerability in Database.php...
CVE-2022-30452
ShopWind = v3.4.2 has a Sql injection vulnerability in Database.php...
CVE-2022-30453
ShopWind = 3.4.2 has a RCE vulnerability in Database.php...
CVE-2022-30452
ShopWind = v3.4.2 has a Sql injection vulnerability in Database.php...
CVE-2022-30453
ShopWind = 3.4.2 has a RCE vulnerability in Database.php...
Design/Logic Flaw
ShopWind = 3.4.2 has a RCE vulnerability in Database.php...
Sql injection
ShopWind = v3.4.2 has a Sql injection vulnerability in Database.php...
CVE-2022-30453
ShopWind
CVE-2022-30452
ShopWind
CVE-2022-30452
ShopWind = v3.4.2 has a Sql injection vulnerability in Database.php...
ShopWind 安全漏洞
ShopWind is a B2B2C, O2O industry e-commerce system software based on the Yii2.0 framework deeply reconstructed by China ShopWind. You can easily create and publish your own brand of professional e-commerce platform for a full range of branding and product promotion. A security vulnerability exis...
baijiacms path traversal vulnerability
baijiacms is a content management system CMS for e-commerce. baijiacms is vulnerable to a path traversal vulnerability, which stems from a directory traversal vulnerability found in database.php, which allows an attacker to delete a folder on any server with the id parameter...
Directory traversal
A directory traversal vulnerability in the component system/manager/class/web/database.php was discovered in Baijiacms V4 which allows attackers to arbitrarily delete folders on the server via the "id" parameter...
baijiacms 路径遍历漏洞
baijiacms is a content management system CMS for e-commerce. baijiacms is vulnerable to a path traversal vulnerability, which stems from a directory traversal vulnerability found in database.php, which allows an attacker to delete a folder on any server with the id parameter...
Updated phppgadmin package fixes a security vulnerability
phppgadmin through 7.12.1 allows sensitive actions to be performed without validating that the request originated from the application. One such area, database.php does not verify the source of an HTTP request. This can be leveraged by a remote attacker to trick a logged-in administrator to visit...
ThinkAdmin 6 - Arbitrarily File Read
Exploit Title: ThinkAdmin 6 - Arbitrarily File Read Google Dork: N/A Date: 2020-09-14 Exploit Author: Hzllaga Vendor Homepage: https://github.com/zoujingli/ThinkAdmin/ Software Link: Before https://github.com/zoujingli/ThinkAdmin/commit/ff2ab47cfabd4784effbf72a2a386c5d25c43a9a Version: v6 =...