WordPress plugin JSP Store Locator 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

WordPress plugin Melapress File Monitor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

CampCodes Sales and Inventory System 注入漏洞

CampCodes Sales and Inventory System is a sales and inventory system from CampCodes, Inc. An injection vulnerability exists in version 1.0 of the CampCodes Sales and Inventory System, which stems from SQL injection due to incorrect manipulation of the parameter cid in the file...

ZOHO ManageEngine ADAudit Plus SQL注入漏洞

ZOHO ManageEngine ADAudit Plus is used by ZOHO USA, Inc. to simplify auditing, prove compliance and detect threats. A security vulnerability exists in ZOHO ManageEngine ADAudit Plus 8510 and prior versions, which stems from an authenticated SQL injection reported by OU History...

ChurchCRM EventEditor.php Page SQL Injection Vulnerability

ChurchCRM is an open source church management system. ChurchCRM suffers from a SQL injection vulnerability that stems from a time-based SQL blind injection vulnerability in the EID POST parameter of the EventEditor.php page. No detailed vulnerability details are provided at this time...

lmxcms 安全漏洞

lmxcms dream cms is a website builder from China Dream Cms lmxcms company. A security vulnerability exists in lmxcms version 1.41, which originates from SQL injection due to incorrect operation of the parameter sortid in the file cadminx005fx001atAction.class.php...

PHPGurukul e-Diary Management System 注入漏洞

The e-Diary Management System is an electronic diary management system. An SQL injection vulnerability exists in e-Diary Management System, which originates from the lack of validation of an externally entered SQL statement in the parameter fname in the file /my-profile.php. An attacker can explo...

Online Nurse Hiring System view-request.php File SQL Injection Vulnerability

Online Nurse Hiring System is an online nurse hiring system. Online Nurse Hiring System suffers from a SQL injection vulnerability that originates from the lack of validation of the viewid parameter in the file /admin/view-request.php against an externally-entered SQL statement. An attacker can u...

WordPress plugin YaySMTP SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A SQL injection...

CVE-2025-4283

A vulnerability was found in SourceCodester/oretnom23 Stock Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /classes/Login.php?f=login. The manipulation of the argument Username leads to sql injection. The attack may be initiated remotely...

Kashipara Online Service Management Portal 安全漏洞

Kashipara Online Service Management Portal is an online service management portal from Kashipara. A security vulnerability exists in Kashipara Online Service Management Portal version V1.0, which stems from improper handling of the rPassword parameter in the /osms/Requester/Requesterchangepass.ph...

itsourcecode Content Management System 安全漏洞

itsourcecode Content Management System is an open source content management system from itsourcecode. A security vulnerability exists in version 1.0 of itsourcecode Content Management System, which is caused by a SQL injection attack due to an incorrect manipulation of the Search parameter in the...

CVE-2025-45017

A SQL injection vulnerability was discovered in edit-ticket.php of PHPGurukul Park Ticketing Management System v2.0. This vulnerability allows remote attackers to execute arbitrary code via the tprice POST request parameter...

PHPGurukul Directory Management System 安全漏洞

Directory Management System is a directory management system. Directory Management System suffers from a SQL injection vulnerability that stems from improper handling of the email parameter in the admin/edit-directory.php file, which can be exploited to query strings and ultimately trick the serv...

PHPGurukul Online Nurse Hiring System 安全漏洞

PHPGurukul Online Nurse Hiring System is an online nurse hiring system from PHPGurukul, Inc. A security vulnerability exists in version 1.0 of the PHPGurukul Online Nurse Hiring System, which stems from improper handling of the parameter viewid in the file /admin/view-request.php, which could lea...

CVE-2025-3974

A vulnerability has been found in PHPGurukul COVID19 Testing Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file /edit-phlebotomist.php?pid=11. The manipulation of the argument mobilenumber leads to sql injection. The attack can be initiated...

CVE-2025-3956

A vulnerability has been found in 201206030 novel-cloud 1.4.0 and classified as critical. This vulnerability affects the function RestResp of the file novel-cloud-master/novel-book/novel-book-service/src/main/resources/mapper/BookInfoMapper.xml. The manipulation leads to sql injection. The attack...

ITC Systems Multiplan/Matrix OneCard platform 安全漏洞

ITC Systems Multiplan/Matrix OneCard platform is a campus or institutional card management platform from ITC Systems. A security vulnerability exists in ITC Systems Multiplan/Matrix OneCard platform version 3.7.4.1002, which originates from a SQL injection vulnerability in the Forgotpassword.aspx...

VirtueMart 安全漏洞

VirtueMart is an open source e-commerce application from VirtueMart, Inc. designed to be used as an extension to Mambo or Joomla! A security vulnerability exists in VirtueMart versions 1.0.0 through 4.4.7, which stems from a SQL injection in the product management area that could result in the...

WebServer 注入漏洞

WebServer is a C++ Linux WebServer server by MARK Individual Developers. An injection vulnerability exists in WebServer version 1.0, which originates from SQL injection due to manipulation of username/password parameters by the Login component in the file code/http/httprequest.cpp...