The vulnerability of the PQescape() function in the libpq library of the PostgreSQL database management system allows a hacker to disclose sensitive information that is protected by this function.

The vulnerability of the PQescape function in the libpq library of the PostgreSQL database management system is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to disclose protected information through SQL injections...

Joomla Component Rokin RokGallery SQL Injection Vulnerability

Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the Joomla component Rokin RokGallery. An attacker can exploit the vulnerability to obtain sensitive database information...

SQL Injection Vulnerability in Jommla!ph*** Component

Joomla! is an open source content management system CMS. A SQL injection vulnerability exists in the Jommla!ph component, which can be exploited by an attacker to obtain sensitive information from the database...

SQL Injection Vulnerability in semcms Backend

SemCms is an open source foreign trade enterprise website management system, mainly used for foreign trade enterprises. semcms background SQL injection vulnerability , attackers can use the vulnerability to obtain sensitive database information...

SQL Injection Vulnerability in the Enterprise Website Building System of Beijing Ten Degrees Creative Technology Co.

Beijing Ten Degrees Creative Technology Co., Ltd. is a provider of Internet branding services for medium and high-end enterprises, specializing in Beijing website construction and Beijing website production. Beijing Ten Degrees Creative Thinking Technology Co., Ltd. corporate website building...

SQL Injection Vulnerability in NetSoft Zhicheng Classifieds Website System

NetSoft Zhicheng classifieds website system is a php mysql based website building system. Netsoft Zhicheng classifieds website system has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information in the database...

SQL Injection Vulnerability in we***/we***.php, a generic framework for Xinhao Collaboration Office System

Xinhuo Co-operation Office System is an office system based on php and mysql development. SQL injection vulnerability exists in we/we.php, which can be exploited by attackers to obtain sensitive database information...

SQL Injection Vulnerability in Xinhuo Collaboration Office System ka***/ka***.php

Xinhuo Co-operation Office System is an office system based on php and mysql development. SQL injection vulnerability exists in ka/ka.php, which can be exploited by attackers to obtain sensitive information from the database...

SQL injection vulnerability in the cl***_id*** parameter of Harbin Fengteng E-commerce station building system pr***.php page

Fengteng e-commerce website building system is a website building system. Harbin Fengteng e-commerce station building system pr.php page under the clid parameter there is a SQL injection vulnerability There is a SQL injection vulnerability, an attacker can use the vulnerability to obtain sensitiv...

SQL Injection Vulnerability in the joomla! jdo*** component sen*** module

joomla! is an open source content management system CMS. A SQL injection vulnerability exists in the joomla! jdo component sen module. The vulnerability allows attackers to obtain sensitive information about the database...

zzcms SQL Injection Vulnerability (CNVD-2019-13260)

ZZCMS is a content management system CMS by the ZZCMS team in China. A SQL injection vulnerability exists in the /user/logincheck.php file in ZZCMS version 8.3. The vulnerability can be exploited by a remote attacker to execute SQL commands with the help of the 'X-Forwarded' parameter in the HTTP...

SQL Injection Vulnerability in Sancai Journal Acquisition and Editing System

Sancai Journal Acquisition and Editing System is a networked office platform. SQL injection vulnerability exists in Sancai Journal Editorial System. An attacker can exploit the vulnerability to obtain sensitive information from the database...

WordPress Plugin Advanced Custom Fields Pro SQL Injection Vulnerability

WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. WordPress plugin Advanced Custom Fields Pro SQL injection vulnerability. The vulnerability is caused due to the program faili...

SQL injection vulnerability in the front-end mo***_sh***_pa***.asp file of the Eco Times Enterprise Online Bookkeeping Management System.

EcoTime Enterprise Online Bookkeeping Management System is an online bookkeeping software for small and medium-sized enterprises, stores, etc. It is suitable for managing cash flow accounts, accounts receivable and payable accounts, as well as company bookkeeping and other related financial...

SQL Injection Vulnerability in Daimi CMS_V6.0.6

Rice CMS is a free open source, fast, simple PC station and cell phone station building integrated integration system , to provide open source Android cell phone client APK and the corresponding server-side system source code download. Rice CMSV6.0.6 SQL injection vulnerability . Rice CMSV6.0.6...

SQL Injection Vulnerability in Sl***_St***.aspx of Bid 1.0 Backend of Qixing Engineering Bidding System

Qixing Bidding System is suitable for enterprises to collect information on government procurement, engineering construction, land grant and other bidding information, and to track the progress of works and payment of successful projects. QiStar Engineering Bidding System Bid 1.0 backend SlSt.asp...

SQL Injection Vulnerability in Bidding System Bid Frontend Wo***.aspx Page

Qixing Bidding System Bid is a system suitable for enterprises to collect information on bidding information of government procurement, engineering construction, land grant, etc., and to track the progress of works and payment of successful projects. A SQL injection vulnerability exists in the...

DEBIAN-CVE-2018-4056

An exploitable SQL injection vulnerability exists in the administrator web portal function of coTURN prior to version 4.5.0.9. A login message with a specially crafted username can cause an SQL injection, resulting in authentication bypass, which could give access to the TURN server administrator...

SQL Injection Vulnerability in Sh***.asp File of Shop7z Online Shopping System Fashion Edition

Shop7z online shopping system is ASP online store platform software, providing comprehensive application services based on Internet solutions. Shop7z online shopping system fashion version of the front Sh.asp file SQL injection vulnerability, an attacker can exploit the vulnerability to obtain...

Component vWishlist SQL Injection Vulnerability in Joomla!

Joomla! is an open source content management system CMS. A SQL injection vulnerability exists in the Joomla! component vWishlist. An attacker can exploit the vulnerability to obtain sensitive database information...