Online Student Rate System 跨站脚本漏洞

Online Student Rate System is an online grading system for students. v1.0 of the Online Student Rate System is vulnerable to a cross-site scripting vulnerability that stems from a lack of validation filtering of user-supplied data and output data in the page parameter of the index.php file. An...

Cross site scripting

PMB 7.3.10 allows reflected XSS via the id parameter in an lvl=authorsee request to index.php...

Cross-site Scripting (XSS)

microweber/microweber is vulnerable to cross-site scriptingXSS attacks. A remote attacker is able to inject and execute malicious javascript via bypassing XSS filters in index.php, resulting in cookie stealing and account takeover...

CVE-2021-41654

SQL injection vulnerabilities exist in Wuzhicms v4.1.0 which allows attackers to execute arbitrary SQL commands via the $keyValue parameter in /coreframe/app/pay/admin/index.php...

CVE-2021-41654

SQL injection vulnerabilities exist in Wuzhicms v4.1.0 which allows attackers to execute arbitrary SQL commands via the $keyValue parameter in /coreframe/app/pay/admin/index.php...

dynamicMarkt SQL Injection Vulnerability (CNVD-2022-67151)

dynamicMarkt is a software. dynamicMarkt 3.10 and earlier versions are vulnerable to SQL injection, which stems from a missing filter escape for SQL data in the parent parameter of index,php. An attacker could use this vulnerability to execute illegal SQL commands to steal sensitive database data...

dynamicMarkt SQL Injection Vulnerability (CNVD-2022-67152)

dynamicMarkt is a software. dynamicMarkt 3.10 and earlier versions are vulnerable to SQL injection, which stems from a problem with the kat parameter in index.php and can be exploited by attackers for SQL injection...

CVE-2021-41755

dynamicMarkt = 3.10 is affected by SQL injection in the kat1 parameter of index.php...

Sql injection

dynamicMarkt = 3.10 is affected by SQL injection in the kat parameter of index.php...

CVE-2021-41756

dynamicMarkt = 3.10 is affected by SQL injection in the kat parameter of index.php...

CVE-2021-41756

CVE-2021-41756 affects dynamicMarkt versions 3.10 and earlier, with SQL injection in the kat parameter of index.php. The vulnerability arises from improper handling of the kat parameter, enabling potentially unauthenticated SQL injection. Public references in the dataset corroborate the descripti...

Sql injection

dynamicMarkt = 3.10 is affected by SQL injection in the parent parameter of index.php...

CVE-2021-41755

dynamicMarkt = 3.10 is affected by SQL injection in the kat1 parameter of index.php...

CVE-2021-41755

CVE-2021-41755 concerns dynamicMarkt versions

dynamicMarkt SQL注入漏洞

dynamicMarkt is a software. dynamicMarkt 3.10 and earlier versions are vulnerable to SQL injection, which stems from a problem with the kat parameter in index.php and can be exploited by attackers for SQL injection...

Simple Bus Ticket Booking System SQL Injection Vulnerability

Simple Bus Ticket Booking System is a bus ticket booking system. version 1.0 of Simple Bus Ticket Booking System is vulnerable to SQL injection attack via /SimpleBusTicket/index.php...

phpABook SQL Injection Vulnerability

phpABook is a simple address/contact management system using PHP and MySQL. phpABook version 0.9i is vulnerable to a SQL injection vulnerability caused by a failure to properly clean up the "authuser" parameter in the index.php script. An attacker could use this vulnerability to execute illegal S...

CVE-2022-30352

phpABook 0.9i is vulnerable to SQL Injection due to insufficient sanitization of user-supplied data in the "authuser" parameter in index.php script...

Sql injection

Simple Bus Ticket Booking System 1.0 is vulnerable to SQL Injection via /SimpleBusTicket/index.php...

Complete Online Job Search System SQL注入漏洞

Complete Online Job Search System is an online job search system. SQL injection vulnerability exists in Complete Online Job Search System, which originates from the over/eris/index.php?q=result&searchfor=bycompany page Lack of validation of external input SQL statements. An attacker could use thi...