SQL Injection Vulnerability in ShopsN v2.0 Frontend OrderController.class.php File

ShopsN is a free e-commerce open source system. ShopsN v2.0 official version of the front-end OrderController.class.php file SQL injection vulnerability . As the system fails to effectively filter the addrdel function. A remote attacker can exploit the vulnerability to obtain sensitive informatio...

SQL injection vulnerability in Ocean CMS \admin\admin_ajax.php page

Ocean Movie Management System seacms, Ocean CMS is a video-on-demand system designed for webmasters with different needs. Ocean CMS \admin\adminajax.php page SQL injection vulnerability. The vulnerability is due to the system failing to effectively filter the data submitted by the user. An attack...

CVE-2017-12731

A SQL Injection issue was discovered in OPW Fuel Management Systems SiteSentinel Integra 100, SiteSentinel Integra 500, and SiteSentinel iSite ATG consoles with the following software versions: older than V175, V175-V189, V191-V195, and V16Q3.1. The application is vulnerable to injection of...

ShopsN 2.0 official version of the foreground collection_del method SQL injection vulnerability

ShopsN Mall system is a product of Shanghai Yiso Network Technology Co., Ltd, an enterprise-class commercial standard full-featured allow free commercial use of open source online store full network system. A SQL injection vulnerability exists in the collectiondel method in the frontend of ShopsN...

SQL Injection Vulnerability in MIPCMS ApiAdminTag.php Page

MIPCMS is a free and open source based on Baidu Mobile Accelerator MIP engine based on the development of articles, information, content management system, but also the system for the Internet webmasters, entrepreneurs and other groups to create SEO-optimized after the station-building system. A...

SQL Injection Vulnerability in Xinqi Online Learning System V6.2.1

Xinqi Online Learning System is an online learning platform system that can make learning plans, realize supervision and monitoring, and assist learning. SQL injection vulnerability exists in version V6.2.1 of Xinqi Online Learning System, which can be exploited by attackers to obtain sensitive...

SQL injection vulnerability in id parameter of website building system of Suzhou Golden Shield Network Technology Co.

Ltd. is mainly engaged in website construction, website promotion, website optimization, enterprise post office, color page samples and other services for Suzhou enterprises. Suzhou Golden Shield Network Technology Co., Ltd. building system id parameters exist SQL injection vulnerability, attacke...

WordPress Easy Modal classescontrolleradminmodals.php file SQL Injection Vulnerability

WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. A SQL injection vulnerability in the WordPress Easy Modal classescontrolleradminmodals.php file allows remote attackers to...

CVE-2017-12909

SQL injection vulnerability in modtask.php in NexusPHP 1.5 allows remote attackers to execute arbitrary SQL commands via the userid parameter...

PHPSHE B2C mall system user.php parameter has sql injection vulnerability

PHPSHE mall system is a combination of product display, online shopping, order management, payment management, article management, customer consultation feedback and other functions, providing users with online shopping mall construction program. A SQL injection vulnerability exists in the user.p...

SQL Injection Vulnerability in Hanchao B2B2C Multi-User Mall System v2.1.6

Hanchao B2B2C multi-user mall system is a PHP multi-user mall website system source code developed in PHP + MySQL. Hanchao B2B2C Multi-User Mall System v2.1.6 suffers from a SQL injection vulnerability. An attacker can exploit this vulnerability to obtain database information...

IBM Tivoli Monitoring Portal SQL Injection Vulnerability

IBM Tivoli Monitoring ITM is a suite of system monitoring software from IBM in the United States. The software supports the detection of system bottlenecks and potential problems, performance monitoring of basic system resources, and automatic recovery from critical situations. IBM Tivoli...

Fiyo CMS SQL Injection Vulnerability (CNVD-2017-23894)

Fiyo CMS is a content management system CMS for creating CMS templates. A SQL injection vulnerability exists in the dapur/apps/apparticle/sysarticle.php file in Fiyo CMS version 2.0.7. A remote attacker can exploit the vulnerability to execute arbitrary SQL commands with the help of...

CVE-2017-2241

SQL injection vulnerability in the AssetView for MacOS Ver.9.2.0 and earlier versions allows remote attackers to execute arbitrary SQL commands via "File Transfer Web Service"...

Niushop open source mall system Auth.php has sql injection vulnerabilities

NiuShop open source mall system , is by the Shanxi Niu Cool Information Technology Co., Ltd. completely independent design , research and development of a PHP open source e-commerce system . Niushop open source mall system Auth.php file parameters exist in the SQL injection vulnerability...

wstmall open source mall system userType parameters exist SQL injection vulnerability

WSTMall is a multi-commercial O2O open source system developed by Merchant Software based on thinkphp, is a system that can help businesses and individuals to quickly build a community service system. wstmall open source mall system userType parameter SQL injection vulnerability , because the...

SQL Injection Vulnerability in eml Enterprise Address Book Management System Version 4.3

EML enterprise customer relationship management system , is based on Linux open kernel and Apache based Php + Mysql intelligent B / S interactive service system . EML Enterprise Contacts Management System v4.3 version of the SQL injection vulnerability. Attackers can use this vulnerability to...

Niushop open source mall system goodsid parameter SQL injection vulnerabilities exist

NiuShop open source mall system is by Shanxi Niu Cool Information Technology Co., Ltd. completely independent design, research and development of a PHP open source e-commerce system . NiuShop open source mall system goodsid parameters exist SQL injection vulnerability . As the system fails to...

SQL injection vulnerability in cms company.asp file id parameter

Tianjin Qihang enterprise station building cms is a website building system. SQL injection vulnerability exists in the id parameter of the company.asp file. An attacker can use this vulnerability to obtain sensitive information from the database...

SQL Injection Vulnerability in MallBuilder

MallBuilder is a multi-user online shopping mall solution based on PHP+MYSQL. MallBuilder suffers from a SQL injection vulnerability. An attacker can use this vulnerability to steal database information and control the operating system...