SQL Injection Vulnerability in php Simple Sweeping Code Payment Education Fee System us***.php Page

php Simple Sweep Pay Education Fee System is a query and fee software developed in Php+MySql. The us.php page of the php Simple Scan Code Payment Education Fee System suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information from the database...

PT-2020-17812 · Unknown · Ultralog Express

Name of the Vulnerable Software and Affected Versions: UltraLog Express affected versions not specified Description: The issue concerns the UltraLog Express device management interface, which fails to properly filter user-inputted strings in specific parameters. This allows attackers to inject...

HDWPlayer SQL Injection Vulnerability in Joomla!

Joomla! is an open source, cross-platform content management system CMS developed using PHP and MySQL. A SQL injection vulnerability exists in Joomla! HDWPlayer. An attacker can exploit this vulnerability to execute illegal SQL commands...

SQL Injection Vulnerability in Tongda OA Backend

Tongda OA Office Anywhere Network Intelligent Office System is a collaborative office automation software independently developed by Beijing Tongda Science and Technology Co., Ltd. and China's enterprise management practices combined with the formation of a comprehensive management office platfor...

Kodak Multimedia Recording and Playback System has SQL Injection Vulnerability

Ltd. is a provider of video and security products and solutions, dedicated to video conferencing, video surveillance and video application solutions to help various government and enterprise customers to solve visual communication and management challenges. A SQL injection vulnerability exists in...

SQL Injection Vulnerability in Jinwei Mobile Mall System or***.php File

Jinwei mobile mall system is a micro-business customers with a public number, imitation hand Tao page layout, support embedded video playback. Support customized model specifications, the main specifications support attached pictures, each subdivided model support inventory control, subdivided...

PYSEC-2020-345

Django 1.11 before 1.11.29, 2.2 before 2.2.11, and 3.0 before 3.0.4 allows SQL Injection if untrusted data is used as a tolerance parameter in GIS functions and aggregates on Oracle. By passing a suitably crafted tolerance to GIS functions and aggregates on Oracle, it was possible to break escapi...

vulhub

It is an open-source collection of pre-built vulnerable docker environments. The primary vulnerability class/vector is not explicitly stated, but the collection includes various environments with different vulnerabilities, such as SQL injection, cross-site scripting XSS, and server-side template...

SQL Injection Vulnerability in Jinwei Smart Restaurant System (CNVD-2020-22744)

Jinwei Intelligent Restaurant System is an internal management system for all major and small restaurants. Jinwei Intelligent Restaurant System suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information from the database...

SQL Injection Vulnerability in Jinwei Mobile Mall System (CNVD-2020-22743)

Jinwei Mobile Mall System is a mall management system for micro-business customers with public numbers. A SQL injection vulnerability exists in Jinwei Mobile Mall System, which can be exploited by attackers to obtain sensitive information from the database...

SQL Injection Vulnerability in yunyecms v2.1.1

Yunye CMS content management system is developed by Yunye Information Technology is a specialized for small and medium-sized enterprise website construction of PHP open source CMS. yunyecms v2.1.1 exists SQL injection vulnerability, attackers can use the vulnerability to obtain database sensitive...

SQL Injection Vulnerability in Kingsoft V8+ Terminal Security System

V8+ Terminal Security System is a new-generation enterprise terminal security software, which can dynamically detect, real-time process, and trace unknown threats in the user's network across the network to meet the increasingly complex needs of domestic enterprise users for security protection o...

Nantong Home Information Technology Co., Ltd. website building system suffers from SQL injection vulnerability

Nantong Home Information Technology Co., Ltd. is a main: Nantong website construction, Nantong Baidu promotion, Nantong Baidu optimization, Nantong 360 promotion, Nantong Sogou promotion, Nantong mass mailing software, Nantong business license agency and other business companies. Nantong Home...

SQL Injection Vulnerability in DM Website Building System (CNVD-2020-23764)

DM enterprise building system is developed by php + mysql a set of specialized in small and medium-sized enterprise website construction of open source cms. DM website building system has a SQL injection vulnerability , attackers can use the vulnerability to obtain sensitive information on the...

CVE-2019-4752

IBM Emptoris Spend Analysis and IBM Emptoris Strategic Supply Management Platform 10.1.0.x, 10.1.1.x, and 10.1.3.x is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-e...

SQL Injection Vulnerability in Feitian Download System

Flying download system FTDMS is the use of template engine caching technology development of a set of information or resource management system, the system uses the original ecological code structure, did not introduce any framework. A SQL injection vulnerability exists in FTDMS. An attacker can...

SQL Injection Vulnerability in SemCMS SE***_Pr***.php File

SemCMS is a set of open source foreign trade enterprise website management system, written in php language, can be run under window or linux system. SemCMS SEPr.php file has a SQL injection vulnerability. Attackers can use the vulnerability to obtain sensitive information in the database...

SQL Injection Vulnerability in SemCMS SE***_Do***.php File

SemCMS is a set of open source foreign trade enterprise website management system, written in php language, can be run under window or linux system. SemCMS SEDo.php file SQL injection vulnerability. Attackers can use the vulnerability to obtain sensitive information in the database...

PHPGurukul Hostel Management System SQL Injection Vulnerability

PHPGurukul Hostel Management System is a hostel management system. A SQL injection vulnerability exists in version v2.0 of the PHPGurukul Hostel Management System. The vulnerability stems from a database-based application that lacks validation of externally entered SQL statements. An attacker can...

Shantou Sanyu Technology Co., Ltd. website building system suffers from SQL injection vulnerability.

Ltd. is a company that focuses on designing, producing and providing personalized e-commerce solutions for enterprises. Ltd. website building system suffers from SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...