Projectworlds Online Hotel Booking System 注入漏洞

Projectworlds Online Hotel Booking System is an online hotel booking system from the Austrian company Projectworlds. An injection vulnerability exists in Projectworlds Online Hotel Booking System version 1.0, which stems from an incorrect operation of the parameter checkin that can lead to SQL...

CVE-2025-1954

A vulnerability was found in PHPGurukul Human Metapneumovirus Testing Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /login.php. The manipulation of the argument username leads to sql injection. The attack can be...

SourceCodester Best Church Management Software 注入漏洞

SourceCodester Best Church Management Software is an open source church management software from SourceCodester. An injection vulnerability exists in SourceCodester Best Church Management Software version 1.1, which stems from an incorrect operation of the parameter encryption that can lead to SQ...

USN-7315-1 postgresql-12, postgresql-14, postgresql-16 vulnerability

Stephen Fewer discovered that PostgreSQL incorrectly handled quoting syntax in certain scenarios. A remote attacker could possibly use this issue to perform SQL injection attacks...

PT-2025-9233 · Unknown · Esafenet Cdg

Name of the Vulnerable Software and Affected Versions: ESAFENET CDG version 5.6.3.154.205 Description: A critical issue affects some unknown functionality of the file /CDGServer3/workflowE/useractivate/updateorg.jsp. The manipulation of the flowId argument leads to SQL injection. The attack may b...

UBUNTU-CVE-2025-26533

An SQL injection risk was identified in the module list filter within course search...

WordPress plugin Ultimate Member SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

PT-2025-7519 · Unknown · Baiyi Cloud Asset Management System

Name of the Vulnerable Software and Affected Versions: Baiyi Cloud Asset Management System version 8.142.100.161 Description: A critical issue was found in the Baiyi Cloud Asset Management System, affecting an unknown part of the file /wuser/admin.ticket.close.php. The manipulation of the ticket ...

GFast 安全漏洞

GFast is a GF Go Frame based backend management system by tiger1103 individual developer. A security vulnerability exists in GFast 3.2 and earlier versions, which stems from SQL injection in the SortName parameter...

Exploit for SQL Injection in Enituretechnology Ltl_Freight_Quotes

CVE-2024-13488 LTL Freight Quotes – Estes Edition = 5.6 AND er...

WordPress plugin Legoeso PDF Manager SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection...

WordPress plugin LTL Freight Quotes SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

WordPress plugin Pollin SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection...

Library Card System 注入漏洞

Library Card System is a library management system. A SQL injection vulnerability exists in Library Card System version 1.0, which originates from a lack of validation of the id parameter of the card.php file against externally entered SQL statements. An attacker can use this vulnerability to...

PHPGurukul Land Record System 安全漏洞

PHPGurukul Land Record System is a land management system from PHPGurukul. A security vulnerability exists in PHPGurukul Land Record System v1.0, which originates from an SQL injection vulnerability contained in the email parameter of the /admin/contactus.php file...

WordPress plugin Small Package Quotes – UPS Edition SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

CVE-2025-26520

Cacti through 1.2.29 allows SQL injection in the template function in hosttemplates.php via the graphtemplate parameter. NOTE: this issue exists because of an incomplete fix for CVE-2024-54146...

CVE-2025-1173

A vulnerability, which was classified as critical, was found in 1000 Projects Bookstore Management System 1.0. This affects an unknown part of the file processusersdel.php. The manipulation of the argument id leads to sql injection. It is possible to initiate the attack remotely...

PT-2025-6117 · Unknown · Code-Projects Job Recruitment

Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A critical issue has been found in code-projects Job Recruitment. The manipulation of the userhash argument leads to SQL injection. It is possible to initiate the attack remotely. The iss...

novel 安全漏洞

novel is an open source novel system by xxyopen open source. A security vulnerability exists in novel version 3.4.1 and earlier versions, which stems from an incorrect operation of the parameter sort that can lead to SQL injection...