2791 matches found
Codezips Pet Shop Management System SQL注入漏洞
Codezips Pet Shop Management System is a Codezips open source pet store management system. Codezips Pet Shop Management System version 1.0 has a SQL injection vulnerability, the vulnerability stems from improper handling of the id parameter in the /animalsupdate.php file resulting in SQL injectio...
PT-2024-16252 · Code Projects · Code-Projects Blood Bank Management
Name of the Vulnerable Software and Affected Versions: code-projects Blood Bank Management version 1.0 Description: A critical issue affects the processing of the file /file/accept.php, where the manipulation of the reqid argument leads to SQL injection. The attack can be initiated remotely...
Petrol Pump Management Software SQL注入漏洞
Petrol Pump Management Software is a gasoline pump management software by mayurik individual developer. A SQL injection vulnerability exists in Petrol Pump Management Software version 1.0, which originates from a SQL injection vulnerability contained in the id parameter of the /admin/editfuel.php...
FunAdmin 安全漏洞
FunAdmin is FunAdmin open source a lightweight and high-color backend development system based on ThinkPHP6+Layui development. A security vulnerability exists in FunAdmin version 5.0.2, which originates from an SQL injection vulnerability in the Curd one-click command mode plugin...
Petrol Pump Management Software 安全漏洞
Petrol Pump Management Software is a gasoline pump management software by mayurik individual developer. A security vulnerability exists in Petrol Pump Management Software version 1.0, which originates from an SQL injection vulnerability contained in the dropservices parameter in the...
EsafeNet CDG SQL注入漏洞
EsafeNet CDG is a document security management system from EsafeNet. A SQL injection vulnerability exists in EsafeNet CDG version 5, which stems from an incorrect operation of the parameter CDGRenewFileId that can lead to SQL injection...
web-money-manager-ex 安全漏洞
web-money-manager-ex is a personal money management system from Money Manager Ex. A security vulnerability exists in web-money-manager-ex version 1.2.2, which stems from improper cleanup of user input in the TrDeleteArr parameter, making it susceptible to SQL injection attacks...
CVE-2024-47223
A vulnerability in the AWV Audio, Web and Video Conferencing component of Mitel MiCollab through 9.8 SP1 FP2 9.8.1.201 could allow an unauthenticated attacker to conduct a SQL injection attack due to insufficient sanitization of user input. A successful exploit could allow an attacker to access...
CVE-2024-47328
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in FunnelKit Automation By Autonami allows SQL Injection.This issue affects Automation By Autonami: from n/a through 3.1.2...
WordPress plugin TS Poll 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
Mitel MiCollab 安全漏洞
Mitel MiCollab is a mobile application from Mitel Canada that provides voice, video, messaging, audio conferencing and team collaboration for employees. A SQL injection vulnerability exists in Mitel MiCollab version 9.7.1.110 and earlier, which stems from insufficient validation of user input in...
CVE-2019-25218
The Photo Gallery Slideshow & Masonry Tiled Gallery plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 1.0.3 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This...
PT-2024-16053 · Safenet · Esafenet Cdg 5
Name of the Vulnerable Software and Affected Versions: ESAFENET CDG 5 Description: A critical issue was found in the connectLogout function of the file /com/esafenet/servlet/ajax/MultiServerAjax.java. The manipulation of the servername argument leads to SQL injection. The attack can be launched...
WordPress Social Link Groups plugin <= 1.1.0 - SQL Injection vulnerability
SQL Injection vulnerability discovered by LVT-tholv2k Patchstack Alliance in WordPress Plugin Social Link Groups versions = 1.1.0...
WordPress Back Link Tracker plugin <= 1.0.0 - CSRF to SQL Injection vulnerability
CSRF to SQL Injection vulnerability discovered by João Pedro Soares de Alcântara - Kinorth Patchstack Alliance in WordPress Plugin Back Link Tracker versions = 1.0.0...
EsafeNet CDG SQL注入漏洞
EsafeNet CDG is a document security management system from EsafeNet. A SQL injection vulnerability exists in EsafeNet CDG V5, which originates from the parameter checklist in the file /com/esafenet/servlet/policy/EncryptPolicyService.java, which can lead to SQL injection...
Centreon BI Server 安全漏洞
Centreon BI Server is an IT monitoring platform from Centreon. A security vulnerability exists in versions of Centreon BI Server prior to 24.04.3, which stems from improper handling of inputs when configuring a list of reporting tasks and is vulnerable to SQL injection attacks...
PT-2024-39844 · Unknown · Code-Projects Blood Bank System
Name of the Vulnerable Software and Affected Versions: code-projects Blood Bank System version 1.0 Description: A critical issue was found in the code-projects Blood Bank System, affecting an unknown function of the file register.php. The manipulation of the user argument leads to SQL injection. ...
SourceCodester Online Veterinary Appointment System SQL注入漏洞
SourceCodester Online Veterinary Appointment System is a SourceCodester open source online veterinary appointment system. A SQL injection vulnerability exists in SourceCodester Online Veterinary Appointment System version 1.0, which originates from the parameter id of the file...
CVE-2024-9286
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in TRtek Software Distant Education Platform allows SQL Injection, Parameter Injection. This issue affects Distant Education Platform: before 3.2024.11...