SQL Injection Vulnerability in Shield Spirit Original Article Submission System 1.0 Backend

Shield Spirit Original Article Submission System 1.0 is a concise submission system. Shield Spirit Original Article Submission System 1.0 has a SQL injection vulnerability in the background, which can be exploited by attackers to obtain sensitive information from the database...

SQL Injection Vulnerability in UFIDA U8-OA

Founded in 1988, UFIDA is a global provider of advanced cloud services, software, and financial services for enterprises and public organizations. A SQL injection vulnerability exists in UFIDA U8-OA, which can be exploited by attackers to obtain sensitive information from the database...

SQL Injection Vulnerability in JfinalOA

JfinalOA is a set of open source office OA system development framework. JfinalOA SQL injection vulnerability , an attacker can exploit the vulnerability to obtain sensitive database information...

CVE-2020-13505

Parameter psClass in ednareporting.asmx is vulnerable to unauthenticated SQL injection attacks. Specially crafted SOAP web requests can cause SQL injections resulting in data compromise. An attacker can send unauthenticated HTTP requests to trigger this vulnerability...

CVE-2020-8887

Telestream Tektronix Medius before 10.7.5 and Sentry before 10.7.5 have a SQL injection vulnerability allowing an unauthenticated attacker to dump database contents via the page parameter in a page=login request to index.php aka the server login page...

ZZCMS 2020 Frontend SQL Injection Vulnerability

ZZCMS is a content management system for Webmaster Merchants. A SQL injection vulnerability exists in the ZZCMS 2020 frontend, which can be exploited by attackers to obtain sensitive information from the database...

openSIS SQL Injection Vulnerability

openSIS is a free, open source student information system/school management software. A SQL injection vulnerability exists in the email parameter in EmailCheck.php in openSIS 7.3. An attacker can exploit this vulnerability by sending an HTTP request to perform a SQL injection attack...

SQL Injection Vulnerability in the Website Building System of Longcheng Internet Wenzhou Network Company (CNVD-2020-54843)

Wenzhou Longcheng Internet Technology Co., Ltd - is engaged in website construction, website production, website design, graphic design, website optimization, website promotion, album design and other integrated Internet companies. Long Cheng Internet Wenzhou Network Company website building syst...

SQL Injection Vulnerability in phpweb finished website builder system

PHPWEB system is developed with PHP+MYSQL technology, with clear architecture and easy-to-maintain code. Support pseudo-static function, can generate google and baidu map, support keywords and descriptions, in line with SEO standards. phpweb finished website builder system has a SQL injection...

Travel Management System SQL Injection Vulnerability

Travel Management System is a travel management system. Travel Management System suffers from a SQL injection vulnerability that arises from a database application that lacks validation of externally entered SQL statements. An attacker could exploit this vulnerability to execute illegal SQL...

SQL Injection Vulnerability in Website Building System of Linyi Xinbao Network Technology Co. Ltd (CNVD-2020-51582)

Linyi Xinpao Network Technology Co., Ltd. is a company that provides website construction, software development and services, e-commerce, website operation, network marketing and promotion; network technology training consulting and information services; corporate image marketing planning,...

SQL Injection Vulnerability in Dongsheng Logistics System of Qingdao Dongsheng Weiye Software Co. Ltd (CNVD-2020-50754)

Qingdao Dongsheng Weiye Software Co., Ltd. was founded in November 2004 formerly known as Qingdao Jinghong Logistics Information Technology Co., Ltd., the company's main business scope for shipping logistics-related products and services. A SQL injection vulnerability exists in Qingdao Dongsheng...

SQL Injection Vulnerability in CMS Backend of Luoyang Yunye Information Technology Co.

Yunye CMS enterprise building system is a php open source cms specialized in small and medium-sized enterprise website construction. Luoyang Yunye Information Technology Co., Ltd. Yunye CMS background SQL injection vulnerability , attackers can use the vulnerability to obtain sensitive informatio...

GHSA-7HMH-8GWV-MFVQ SQL Injection in Kylin

Kylin has some restful apis which will concatenate SQLs with the user input string, a user is likely to be able to run malicious database queries...

Ltd. cross-border e-commerce integrated platform has SQL injection vulnerability

Ltd. was founded in 2013 as an information technology service provider. Ltd. cross-border e-commerce integrated platform suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...

Apache Kylin SQL Injection Vulnerability

Apache Kylin is the United States Apache Apache Software Foundation of an open source distributed analytical data warehouse . The product mainly provides Hadoop/Spark on top of the SQL query interface and multidimensional analysis OLAP and other functions. A SQL injection vulnerability exists in...

SQL Injection Vulnerability in ZZCMS Backend st***.php File

ZZCMS is a free website builder developed in asp language. A SQL injection vulnerability exists in the background st.php file of ZZCMS. Attackers can use the vulnerability to obtain sensitive information in the database...

CVE-2020-14068

An issue was discovered in MK-AUTH 19.01. The web login functionality allows an attacker to bypass authentication and gain client privileges via SQL injection in central/executarlogin.php...

SQL Injection Vulnerability in Dalian Longcai Technology Development Co.

Longcai Technology Group Limited Liability Company is a company dedicated to the development and construction of the Internet enterprise wisdom cloud service platform, and "Internet + industry innovation" platform services. There is a SQL injection vulnerability in the website building system of...

SQL Injection Vulnerability in Website Building System of Zibo Xu Ran Network Technology Co.

Zibo Xuran Web Technology Co., Ltd. is a high-end web design company that provides full branding services. There is a SQL injection vulnerability in the website system of Zibo Xuran Network Technology Co. Ltd, which can be exploited by attackers to obtain sensitive information from the database...