SOPlanning 安全漏洞

SOPlanning is a suite of online project management software from SOPlanning, Inc. A security vulnerability exists in SOPlanning versions prior to 1.45, which stems from vulnerability to SQL injection attacks that allow a remote user to send a specially crafted query and extract all information...

CVE-2024-45249

Cavok – CWE-89: Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection'...

Octopus Server 安全漏洞

Octopus Server is a deployment automation and release management tool for continuous delivery from Octopus Australia. A security vulnerability exists in Octopus Server that stems from the presence of a SQL injection vulnerability...

CVE-2024-9317

A vulnerability classified as critical was found in SourceCodester Online Eyewear Shop 1.0. Affected by this vulnerability is the function deletecategory of the file /classes/Master.php?f=deletecategory. The manipulation of the argument id leads to sql injection. The attack can be launched...

Advocate Office Management System SQL注入漏洞

Advocate Office Management System is an office management system by Mayuri K. Individual developer. A SQL injection vulnerability exists in SourceCodester Advocate Office Management System version 1.0, which originates from an SQL injection issue contained in the id parameter in the...

CVE-2024-46472

CodeAstro Membership Management System 1.0 is vulnerable to SQL Injection via the parameter 'email' in the Login Page...

RIELLO UPS NetMan SQL注入漏洞

RIELLO UPS NetMan is a network adapter from RIELLO UPS, Italy. A security vulnerability exists in RIELLO UPS NetMan version 204 4.05, which originates from improper neutralization in the presence of a particular element, resulting in a SQL injection vulnerability...

CVE-2024-9011

A vulnerability, which was classified as critical, was found in code-projects Crud Operation System 1.0. Affected is an unknown function of the file updata.php. The manipulation of the argument sid leads to sql injection. It is possible to launch the attack remotely. The exploit has been disclose...

CVE-2024-42404

SQL injection vulnerability in Welcart e-Commerce prior to 2.11.2 allows an attacker who can login to the product to obtain or alter the information stored in the database...

VulnCheck KEV: CVE-2023-4166

A vulnerability has been found in Tongda OA and classified as critical. This vulnerability affects unknown code of the file general/system/sealmanage/dianju/deletelog.php. The manipulation of the argument DELETESTR leads to sql injection. The exploit has been disclosed to the public and may be...

Code-Projects Crud Operation System SQL注入漏洞

Code-Projects Crud Operation System is a Code-Projects open source application. Code-Projects Crud Operation System version 1.0 suffers from a SQL injection vulnerability that stems from the parameter sid in the file /updatedata.php that can lead to SQL injection...

CVE-2024-34779

An unspecified SQL injection in Ivanti EPM before 2022 SU6, or the 2024 September update allows a remote authenticated attacker with admin privileges to achieve remote code execution...

Ivanti Endpoint Manager SQL注入漏洞

Ivanti Endpoint Manager EPM is a suite of endpoint security managers from Ivanti USA. An SQL injection vulnerability exists in Ivanti Endpoint Manager. An attacker exploiting this vulnerability could remotely execute code...

Ivanti Endpoint Manager SQL注入漏洞

Ivanti Endpoint Manager EPM is a suite of endpoint security managers from Ivanti USA. An SQL injection vulnerability exists in Ivanti Endpoint Manager. An attacker exploiting this vulnerability could remotely execute code...

PT-2024-13438 · Undefined · Undefined

SageCRM Directory Traversal, SQL Injection and Server-Side Request Forgery CVEs: CVE-2023-47300, CVE-2023-47301, CVE-2023-47302,CVE-2023-47303 https://t.co/HSou9Momct...

WordPress plugin Opti Marketing 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

CVE-2024-44727

Sourcecodehero Event Management System1.0 is vulnerable to SQL Injection via the parameter 'username' in /event/admin/login.php...

Food Ordering Management System SQL注入漏洞

Food Ordering Management System is a food ordering management system by Carlo Montero, an individual developer. It provides an online platform to order food from a restaurant or fast food chain. A SQL injection vulnerability exists in Food Ordering Management System version 1.0, which stems from...

PT-2024-31458 · Za Internet · Za-Internet C-Mor Video Surveillance

Name of the Vulnerable Software and Affected Versions: za-internet C-MOR Video Surveillance versions 5.2401 through 6.00PL01 Description: An issue was discovered due to improper validation of user-supplied data, making different functionalities of the C-MOR web interface vulnerable to SQL injecti...

Code-Projects Hospital Management System SQL注入漏洞

Code-Projects Hospital Management System is a Code-Projects open source hospital management system. Code-Projects Hospital Management System version 1.0 suffers from a SQL injection vulnerability, which originates from a SQL injection vulnerability contained in the index.php page...