37 matches found
PKP Vendor Open Journal System 跨站脚本漏洞
PKP Vendor Open Journal System is an open journal system organized by PKP. It is used to manage and publish academic journals. A cross-site scripting vulnerability exists in PKP Vendor Open Journal System versions v2.4.8 through v3.3.8, which can be exploited by an attacker via a specially crafte...
SQL Injection Vulnerability in Sancai Journal Acquisition and Editing System of Xi'an Sancai Technology Industry Co.
Xi'an Sancai Technology Industry Co., Ltd. is a high-tech enterprise composed of a team of experts from the fields of scientific and technical journals, literature database management, and software design and engineering. SQL injection vulnerability exists in Sancai Journal Acquisition and Editin...
XSS Vulnerability in the Collaborative Journal Acquisition and Editing System of China Academic Journals (CD-ROM Version) Electronic Magazine Agency Ltd.
The collaborative editorial system of periodicals is a comprehensive service platform for the whole process of periodicals collection, editing, reviewing, proofreading and distribution. An XSS vulnerability exists in the collaborative journal collection and editing system of China Academic Journa...
Arbitrary Password Reset Vulnerability in Sancai Journal Acquisition and Editing System
Sancai Journal Acquisition and Editing System is a networked office platform. There is an arbitrary password reset vulnerability in Sancai Journal Acquisition and Editing System, which can be exploited by an attacker to reset any user's password...
Arbitrary File Read Vulnerability in Sancai Journal Acquisition and Editing System
Sancai Journal Acquisition and Editing System is a networked office platform. Sancai Journal Acquisition and Editing System suffers from an arbitrary file read vulnerability, which can be exploited by an attacker to read arbitrary files...
SQL Injection Vulnerability in Sancai Journal Acquisition and Editing System
Sancai Journal Acquisition and Editing System is a networked office platform. SQL injection vulnerability exists in Sancai Journal Editorial System. An attacker can exploit the vulnerability to obtain sensitive information from the database...
Public Knowledge Project Open Journal System Cross-Site Scripting Vulnerability
Public Knowledge Project PKP Open Journal System OJS is a journal management and publishing system. A cross-site scripting vulnerability exists in PKP OJS version 3.X prior to 3.1.1-2, which stems from the program failing to escape the '$authors' parameter. A remote attacker can use the '$authors...
CVE-2018-12229
Cross-site scripting XSS vulnerability in Public Knowledge Project PKP Open Journal System OJS 3.0.0 to 3.1.1-1 allows remote attackers to inject arbitrary web script or HTML via the templates/frontend/pages/search.tpl parameter aka the By Author field...
CVE-2018-12229
Cross-site scripting XSS vulnerability in Public Knowledge Project PKP Open Journal System OJS 3.0.0 to 3.1.1-1 allows remote attackers to inject arbitrary web script or HTML via the templates/frontend/pages/search.tpl parameter aka the By Author field...
CVE-2018-12229
Cross-site scripting XSS vulnerability in Public Knowledge Project PKP Open Journal System OJS 3.0.0 to 3.1.1-1 allows remote attackers to inject arbitrary web script or HTML via the templates/frontend/pages/search.tpl parameter aka the By Author field...
CVE-2018-12229
The CVE-2018-12229 issue affects PKP Open Journal System (OJS) versions 3.0.0 through 3.1.1-1. The root cause is a cross-site scripting flaw in the templates/frontend/pages/search.tpl, specifically via the By Author field, allowing remote attackers to inject arbitrary web script or HTML. Some sou...
SQL Injection Vulnerability in Sancai Journal Acquisition and Editing System
Sancai Journal Acquisition and Editing System is a networked office platform. SQL injection vulnerability exists in Sancai Journal Editorial System. An attacker can exploit the vulnerability to obtain sensitive information from the database...
SQL injection vulnerability in FrameSelect.aspx page Type parameter of Nanjing Jenohan Software Periodicals and Magazines System.
Nanjing Jenohan Software Technology Co., Ltd. is for the development of hospital full cost accounting decision support software system, hospital performance management information system and hospital customer management information system. There exists a second SQL injection vulnerability in...
SQL injection vulnerability in the owner parameter of Nanjing Jenohan Journal Submission System.
Nanjing Jenohan Software Technology Co., Ltd. is for the development of hospital full cost accounting decision support software system, hospital performance management information system and hospital customer management information system. A SQL injection vulnerability exists in the owner paramet...
SQL Injection Vulnerability in ItemNo Parameter of Nanjing GenoHan Journal Submission System
Nanjing Jenohan Software Technology Co., Ltd. is for the development of hospital full cost accounting decision support software system, hospital performance management information system and hospital customer management information system. There is a SQL injection vulnerability in the ItemNo...
SQL Injection Vulnerability in Searchid Parameter of Nanjing Jenohan Journal Submission System.
Nanjing Jenohan Software Technology Co., Ltd. is for the development of hospital full cost accounting decision support software system, hospital performance management information system and hospital customer management information system. An SQL injection vulnerability exists in the searchid...
Name parameter SQL injection vulnerability in Wipro's Chinese scientific and technical journal system/index.asp page
Ltd, formerly known as Database Research Center of Chongqing Branch of China Science and Technology Information Research Institute, is a Chinese periodical database research organization in China. The name parameter SQL injection vulnerability in Wipro's Chinese scientific and technical journal...