WordPress Watu Quiz plugin <= 3.4.1.2 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Trương Hữu Phúc Patchstack Alliance in WordPress Plugin Watu Quiz versions = 3.4.1.2...

Siyuan 安全漏洞

SiYuan is a privacy-first personal knowledge management system from SiYuan open source. A security vulnerability exists in Siyuan version 3.1.11, which stems from an SQL injection vulnerability contained in the notebook parameter of the /searchHistory file...

SiYuan 安全漏洞

SiYuan is a privacy-first personal knowledge management system from SiYuan open source. A security vulnerability exists in SiYuan version 3.1.11, which stems from the ids array parameter of the /batchGetBlockAttrs file containing a SQL injection vulnerability...

CVE-2024-11964

A vulnerability, which was classified as critical, was found in PHPGurukul Complaint Management system 1.0. This affects an unknown part of the file /user/index.php. The manipulation of the argument emailid leads to sql injection. It is possible to initiate the attack remotely. The exploit has be...

WordPress plugin Express Payments Module SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A SQL injection...

Zabbix SQL注入漏洞

Zabbix is an open source monitoring system from Zabbix. The system supports network monitoring, server monitoring, cloud monitoring and application monitoring. A SQL injection vulnerability exists in Zabbix versions 6.0.0 through 6.0.31, 6.4.0 through 6.4.16, and 7.0.0. The vulnerability stems fr...

Centreon 安全漏洞

Centreon is a set of open source system monitoring tools from the French company Centreon . The product provides monitoring capabilities for resources such as networks, systems and applications. A security vulnerability exists in Centreon that stems from the fact that SQL injection can occur in t...

masterstack_imgcap 安全漏洞

masterstackimgcap is an open source application by debjeetism. A security vulnerability exists in masterstackimgcap version 0.0.1, which stems from a SQL injection vulnerability in endpoint/submit...

CVE-2023-52335

Advantech iView ConfigurationServlet SQL Injection Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installations of Advantech iView. Authentication is not required to exploit this vulnerability. The specific flaw exist...

CVE-2024-7026

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Teknogis Informatics Closed Circuit Vehicle Tracking Software allows SQL Injection, Blind SQL Injection. This issue affects Closed Circuit Vehicle Tracking Software: through 21.11.2024. NOTE: The...

itsourcecode Tailoring Management System 安全漏洞

itsourcecode Tailoring Management System is a tailoring management system from itsourcecode open source. A security vulnerability exists in version 1.0 of itsourcecode Tailoring Management System, which stems from an incorrect manipulation of the parameter id that can lead to sql injection...

CVE-2024-11257

A vulnerability classified as critical has been found in 1000 Projects Beauty Parlour Management System 1.0. This affects an unknown part of the file /admin/forgot-password.php. The manipulation of the argument email leads to sql injection. It is possible to initiate the attack remotely. The...

KASO 安全漏洞

KASO is an application from KASO Inc. A security vulnerability exists in KASO v9.0, which stems from the discovery of an SQL injection vulnerability via the personid parameter in /cardcase/editcard.jsp...

Kashipara E-learning Management System 安全漏洞

Kashipara E-learning Management System is a learning management system from Kashipara Corporation. A security vulnerability exists in Kashipara E-learning Management System version 1.0, which originates from SQL injection of the parameters firstname and lastname...

SourceCodester Best Employee Management System 安全漏洞

SourceCodester Best Employee Management System is a SourceCodester open source employee management system. A security vulnerability exists in SourceCodester Best Employee Management System version 1.0, which originates from an SQL injection vulnerability in the id parameter of the...

PT-2024-34422 · Unknown · Kashipara E-Learning Management System Project

Name of the Vulnerable Software and Affected Versions: kashipara E-learning Management System Project version 1.0 Description: A SQL Injection issue was found in the /admin/class.php file via the class name parameter. This allows for potential exploitation. Recommendations: For kashipara E-learni...

Ivanti Endpoint Manager SQL注入漏洞

Ivanti Endpoint Manager is an enterprise-grade endpoint management solution, mainly used for centralized management of various types of devices including Windows, MacOS, Linux, iOS/Android mobile devices, etc., to achieve unified configuration, security control and remote operation and maintenanc...

Ivanti Endpoint Manager SQL注入漏洞

Ivanti Endpoint Manager is an enterprise-grade endpoint management solution, mainly used for centralized management of various types of devices including Windows, MacOS, Linux, iOS/Android mobile devices, etc., to achieve unified configuration, security control and remote operation and maintenanc...

Lingdang CRM SQL注入漏洞

Lingdang CRM Lingdang CRM is a customer relationship management system from China Lingdang Lingdang company. A SQL injection vulnerability exists in Lingdang CRM 8.6.4.3 and earlier versions, which originates from the parameter userid in the file...

PT-2024-8800 · Intel · Intel Neural Compressor

Name of the Vulnerable Software and Affected Versions: IntelR Neural Compressor versions prior to v3.0 Description: The issue is related to improper neutralization of special elements used in an SQL command, also known as 'SQL Injection', in some IntelR Neural Compressor software. This may allow ...