2820 matches found
SQL Injection Vulnerability in Website Building System of Wisdom Sky Advertising Co.
Wisdom Tiancheng Advertising Co., Ltd. is a professional organization in brand planning, brand image design and product packaging design. There is a SQL injection vulnerability in the website building system of Wisdom Tiansheng Advertising Co. Ltd, which can be exploited by attackers to obtain...
Daqing JiuJiu Network Technology Co., Ltd. website building system has SQL injection vulnerability
Daqing JiuJiu Network Technology Co., Ltd. is a technical service enterprise in the whole network marketing, enterprise e-commerce, value-added telecommunication business; network technology services; computer software development, sales and services, computer system services, computer repair, da...
SQL injection vulnerability in the b*** parameter of the zzzphp sa***.php page
zzphp is a PHP and MYSQL based CMS, free open source building system. zzzphp sa.php page b parameters exist SQL injection vulnerability, an attacker can exploit the vulnerability to obtain database sensitive information...
X5music Music Management System frontend ne***.php file has SQL injection vulnerability
X5music music management system is a set of open source music products. X5music music management system front ne.php file SQL injection vulnerability. An attacker can exploit the vulnerability to obtain sensitive information in the database...
SQL injection vulnerability in the background cm***_de***_ed***.php page of VANOC enterprise website management system.
Vanno enterprise website management system is an asp + access for the development of asp enterprise website source code. A SQL injection vulnerability exists in the backend cmdeed.php page of Vanno's enterprise website management system. Attackers can use this vulnerability to obtain sensitive...
SQL Injection Vulnerability in Laike E-commerce System (CNVD-2020-01258)
Laike e-commerce with independent copyright system, is an integrated e-commerce system all the functions of the platform. A SQL injection vulnerability exists in Laike E-commerce system, which can be exploited by attackers to access sensitive database information...
Pimcore SQL Injection Vulnerability (CNVD-2019-42564)
Pimcore is Austria Pimcore company's set of open source for creating and managing Web applications Web content management platform. The platform integrates Web content management, e-commerce framework and product information management applications. A SQL injection vulnerability exists in version...
SQL Injection Vulnerability in OpenSNS Backend
OpenSNS is a comprehensive social software developed by Thinking Sky. A SQL injection vulnerability exists in the OpenSNS backend, which can be exploited by attackers to obtain sensitive database information...
SQL Injection Vulnerability in opensns Backend
OpenSNS is a comprehensive social software developed by Thinking Sky. A SQL injection vulnerability exists in the opensns backend, which can be exploited by attackers to obtain sensitive information from the database...
SQL Injection Vulnerability in Super CMS da***.ma***.php
Super CMS content management system in order to solve the problem of website optimization and development of a set of products, it is an efficient open source content management system, the product is based on PHP + MYSQL architecture, can run on Windows, Linux, MacOSX, Solaris and other various...
CVE-2019-2211
In createProjectionMapForQuery of TvProvider.java, there is possible SQL injection. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9...
Quest Software KACE Systems Management Appliance Server Center SQL Injection Vulnerability (CNVD-2020-20172)
Quest Software KACE Systems Management Appliance SMA is a systems management appliance from Quest Software, USA. It supports IT asset management, server management and monitoring, software license management, patch management, etc. Server Center is one of the help desk programs. A SQL injection...
SQL Injection Vulnerability in MetInfo7
MetInfo is an open source and free CMS building system suitable for enterprise building, MetInfo enterprise website management system is mainly used to build enterprise websites, using PHP + Mysql architecture. MetInfo7 SQL injection vulnerability , attackers can use the vulnerability to access...
SQL Injection Vulnerability in ezEIP Enterprise Website Management System
ezEIP Enterprise Website Management System is a CMS software i.e. Content Management System for building enterprise-level websites produced by Wando. A SQL injection vulnerability exists in the ezEIP Enterprise Website Management System. An attacker can exploit the vulnerability to obtain sensiti...
SQL injection vulnerability in seacms backend (CNVD-2019-43675)
Ocean CMS seacms is a video-on-demand system based on PHP+MySql technology. There is a SQL injection vulnerability in the backend of seacms, which can be exploited by attackers to obtain sensitive database information...
DedeCMS backend has SQL injection vulnerability
Dream Content Management System DedeCMS is a PHP open source website management system. A SQL injection vulnerability exists in the backend of DedeCMS. The vulnerability stems from the lack of validation of externally entered SQL statements in the database-based application, which can be exploite...
SQL Injection Vulnerability in ZZCMS Frontend
ZZCMS is a content management system for Merchants Network. A SQL injection vulnerability exists in the frontend of ZZCMS. An attacker can exploit this vulnerability to obtain sensitive information from the database...
pixelpost SQL injection vulnerability (CNVD-2019-39945)
pixelpost is a set of PHP and MySQL based , scalable open source photo blog application . A SQL injection vulnerability exists in pixelpost version 1.7.1-5, which stems from a lack of validation of externally-entered SQL statements in the database-based application and can be exploited by an...
SQL Injection Vulnerability in the i*** Parameters of Thunderwind Movie CMS Mo***.php Page
Thunderwind CMS is a video-on-demand system developed using Thinkphp framework + Mysql to ensure the stability and efficiency of the program. Thunderwind Movie CMS Mo.php page i parameters exist SQL injection vulnerability, attackers can use the vulnerability to obtain database sensitive...
YouPHPTube 'id' Parameter SQL Injection Vulnerability
YouPHPTube is a PHP-based video website system. A SQL injection vulnerability exists in the 'id' parameter of the /plugin/ADServer/view/campaignsVideos.json file in YouPHPTube version 7.6. The vulnerability stems from a lack of validation of externally entered SQL statements in database-based...