WordPress Plugin HD FLV PLayer SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

PT-2023-17375 · Sourcecodester · Sourcecodester Best Online News Portal

Name of the Vulnerable Software and Affected Versions: SourceCodester Best Online News Portal version 1.0 Description: A critical issue was found in the file /admin/forgot-password.php, specifically in the POST Parameter Handler component. The manipulation of the username argument leads to SQL...

CVE-2023-1940

A vulnerability classified as critical was found in SourceCodester Simple and Beautiful Shopping Cart System 1.0. This vulnerability affects unknown code of the file deleteuserquery.php. The manipulation of the argument userid leads to sql injection. The attack can be initiated remotely. The...

BP Monitoring Management System SQL注入漏洞

BP Monitoring Management System is a web-based application by the individual developer of phpgurukul. A SQL injection vulnerability exists in HPGurukul BP Monitoring Management System version 1.0. The vulnerability stems from a SQL injection vulnerability in the name/mobno parameter...

PT-2023-17356 · Sourcecodester · Sourcecodester Simple/Beautiful Shopping Cart System

Name of the Vulnerable Software and Affected Versions: SourceCodester Simple and Beautiful Shopping Cart System version 1.0 Description: A critical issue was found in the delete user query.php file, where the manipulation of the user id argument leads to SQL injection. The attack can be initiated...

PT-2023-3266 · Glpi +2 · Glpi +2

Name of the Vulnerable Software and Affected Versions: GLPI versions 0.50 through 9.5.12 GLPI versions 10.0.0 through 10.0.6 Description: The issue is related to a SQL Injection vulnerability that allows users with access rights to statistics or reports to extract all data from the database and, ...

WordPress plugin WCFM Marketplace SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blog sites on PHP and MySQL servers.WordPress plugin is an...

Young Entrepreneur E-Negosyo System SQL注入漏洞

Young Entrepreneur E-Negosyo System is a Young Entrepreneur E-Negosyo System for janobe individual developers. A security vulnerability exists in SourceCodester Young Entrepreneur E-Negosyo System version 1.0, which stems from an incorrect manipulation of the parameter UUSERNAME resulting in sql...

Ivanti Avalanche SQL注入漏洞

Ivanti Avalanche is an enterprise mobile device management system from Ivanti, USA. The system is primarily used to manage devices such as smartphones, tablets and barcode scanners. Ivanti Avalanche version 6.3.2.3490 suffers from a SQL injection vulnerability that stems from a crafted request in...

PT-2023-8664 · Unknown · Mailsherlock

Name of the Vulnerable Software and Affected Versions: MailSherlock affected versions not specified Description: The issue is related to the lack of protection against SQL query structure exploitation in the email audit record platform. This can be exploited by a remote attacker to execute...

PrestaShop SQL注入漏洞

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides multiple payment methods, short message alerts and product image zoom and other features. A security vulnerability exists in PrestaShop smplredirectionsmanager 1.1.19 and earlier...

Automatic Question Paper Generator System SQL注入漏洞

Automatic Question Paper Generator System is an automatic question paper generator system by Carlo Montero Personal Developer. A SQL injection vulnerability exists in SourceCodester Automatic Question Paper Generator System version 1.0, which stems from a problem with the file...

CVE-2023-28662

The Gift Cards Gift Vouchers and Packages WordPress Plugin, version = 4.3.1, is affected by an unauthenticated SQL injection vulnerability in the template parameter in the wpgvdoajaxvoucherpdfsavefunc action...

WordPress Plugin WP Popup Banners SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

CVE-2023-27570

The eotags package before 1.4.19 for PrestaShop allows SQL injection via a crafted ga cookie...

Alphaware Simple E-Commerce System SQL注入漏洞

Alphaware Simple E-Commerce System is an e-commerce system by razormist individual developers. A SQL injection vulnerability exists in Alphaware Simple E-Commerce System version 1.0, which is caused by incorrect manipulation of the username/password parameters...

PT-2023-2219 · Sourcecodester · Sourcecodester E-Commerce System

Name of the Vulnerable Software and Affected Versions: SourceCodester E-Commerce System version 1.0 Description: A critical issue has been found in the processing of the file /ecommerce/admin/settings/setDiscount.php, which is related to a lack of protection of the SQL query structure. This issue...

CVE-2023-1499

A vulnerability classified as critical was found in code-projects Simple Art Gallery 1.0. Affected by this vulnerability is an unknown functionality of the file adminHome.php. The manipulation of the argument reachcity leads to sql injection. The attack can be launched remotely. The exploit has...

Utarit Information Technologies Persolus SQL注入漏洞

Utarit Information Technologies Persolus is an application from Utarit Information Technologies. A security vulnerability exists in Utarit Information Technologies Persolus versions prior to 2.03.93 that stems from the presence of a SQL injection vulnerability...

Canteen Management System SQL注入漏洞

Canteen Management System is a cafeteria management system by Mayuri K. Individual developer. A SQL injection vulnerability exists in SourceCodester Canteen Management System version 1.0, which stems from the presence of an unknown function in changeUsername.php that leads to SQL injection via th...