ZhiCms backend pa****.php suffers from SQL injection vulnerability

ZhiCms is an enterprise building system based on PHP and mysql technology. A SQL injection vulnerability exists in the pa.php page of the background of zhicms, which can be exploited by attackers to obtain sensitive information from the database...

WordPress pretty-link plugin SQL injection vulnerability

WordPress is the WordPress Foundation's set of blogs using PHP language development guest platform. The platform supports setting up personal blog sites on PHP and MySQL servers. pretty-link is a plugin for adding hyperlinks to web pages. WordPress pretty-link plugin version 1.6.8 before the...

SQL Injection Vulnerability in Air Quality System Publishing System

Zhuhai Goling Information Technology Co., Ltd. is a high-tech enterprise engaged in research and development of core technology of information network, production of professional equipment and network application service. An SQL injection vulnerability exists in the Air Quality System Publishing...

WordPress microblog-poster plugin SQL injection vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. microblog-poster is a plugin used to automatically post web content to social media. A SQL injection vulnerability exists in the...

Cisco Firepower Management Center SQL Injection Vulnerability (CNVD-2019-34736)

Cisco Firepower Management Center FMC is a new generation of firewall management center software from Cisco. A SQL injection vulnerability exists in the web-based management interface in Cisco FMC, which stems from the program's failure to properly validate input. A remote attacker could exploit...

SugarCRM pmse_Inbox Module SQL Injection Vulnerability

SugarCRM is a set of open source customer relationship management software . A SQL injection vulnerability exists in the pmseInbox module of SugarCRM. The vulnerability stems from a lack of input validation. An attacker can exploit this vulnerability to inject custom PHP code...

SugarCRM Administration Module SQL Injection Vulnerability

SugarCRM is a set of open source customer relationship management software . A SQL injection vulnerability exists in the Administration module of SugarCRM. The vulnerability stems from a lack of input validation. An attacker can exploit this vulnerability to inject custom PHP code...

SugarCRM SQL Injection Vulnerability

SugarCRM is a set of open source customer relationship management software . A SQL injection vulnerability exists in the email module of SugarCRM. The vulnerability stems from a lack of input validation. An attacker can exploit the vulnerability to inject custom PHP code...

CVE-2019-17298

SugarCRM before 8.0.4 and 9.x before 9.0.2 allows SQL injection in the Administration module by a Developer user...

PT-2019-3380 · Cisco · Cisco Firepower Management Center

Name of the Vulnerable Software and Affected Versions: Cisco Firepower Management Center FMC Software affected versions not specified Description: The issue is related to improper input validation in the web-based management interface, allowing an authenticated, remote attacker to execute arbitra...

CVE-2019-16743

eBrigade before 5.0 has evenementical.php evenement SQL Injection...

SQL injection vulnerability in the co***.cl***.php file of the Seven Bears library system

Seven bears library system a similar Baidu library online document preview, selling system. A SQL injection vulnerability exists in the co.cl.php file. An attacker can exploit the vulnerability to obtain sensitive information from the database...

ShopsN open source mall system Go***::cl*** file with SQL injection vulnerabilities

ShopsN open source mall system is a product of Shanghai Yiso Network Technology Co., Ltd. an enterprise-class commercial standard full-featured allow free commercial use of open source online store full network system . ShopsN open source mall system Go::cl file SQL injection vulnerability ,...

ShopsN open source mall system ed*** function SQL injection vulnerabilities exist

ShopsN free version of B2C e-commerce is a product of Shanghai Yisu Network Technology Co. ShopsN open source mall system ed function SQL injection vulnerability , attackers can use the vulnerability to obtain sensitive information in the database...

Yantai Cloud Pulse Network CMS website building system has SQL injection vulnerability

Yantai Cloud Pulse Network Technology Co., Ltd. is a professional website construction and search engine marketing services provider. Dedicated to small and medium-sized enterprises network marketing services, and website construction, enterprise version of the PC website construction, three-in-o...

SQL Injection Vulnerability in Kaixin Official Vehicle System

Qixing official car system can be used as enterprises, government departments official car applications, the system supports the second level of approval, support for vehicle maintenance, refueling records, mileage and fuel consumption reports, the system supports WeChat / enterprise WeChat...

WordPress Relevanssi Premium Plugin SQL Injection Vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A SQL injection vulnerability exists in WordPress Relevanssi Premium plugin versions prior to 1.14.6.1. The...

WordPress zm-gallery plugin SQL injection vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A SQL injection vulnerability exists in version 1.0 of the WordPress zm-gallery plugin. The vulnerability stem...

CVE-2017-18602

The examapp plugin 1.0 for WordPress has SQL injection via the wp-admin/admin.php?page=examappUserResult id parameter...

S-CM e-commerce system aj***.php page P_sort parameter SQL injection vulnerability

S-CMS e-commerce system is an e-commerce software. S-CM e-commerce system aj.php page Psort parameter SQL injection vulnerability, an attacker can use the vulnerability to obtain sensitive information...