Automated Voting System SQL Injection Vulnerability

Automated Voting System is an automated voting system. Automated Voting System suffers from a SQL injection vulnerability. No information about this vulnerability is available at this time, please stay tuned to CNNVD or the vendor announcement...

PT-2023-31673 · Repute Infosystems · Bookingpress

Name of the Vulnerable Software and Affected Versions: Repute Infosystems BookingPress – Appointment Booking Calendar Plugin and Online Scheduling Plugin versions 1.0.0 through 1.0.72 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special...

PT-2023-32892 · Code Projects · Code-Projects Intern Membership Management System

Name of the Vulnerable Software and Affected Versions: code-projects Intern Membership Management System version 2.0 Description: A critical issue was found in the User Registration component, specifically in the /user registration/ file. The manipulation of the userName argument leads to SQL...

Nokia NFM-T Security Vulnerability

Nokia NFM-T is a transport network function manager from Nokia of Finland. A security vulnerability exists in Nokia NFM-T version R19.9 that stems from the presence of a SQL injection vulnerability...

CVE-2023-45120

Online Examination System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'qid' parameter of the /update.php?q=quiz&step=2 resource does not validate the characters received and they are sent unfiltered to the database...

Tongda2000 SQL Injection Vulnerability

Tongda2000 is a network intelligent office system of China Tongda Tongda. Tongda2000 11.9 and previous versions exist SQL injection vulnerability, the vulnerability stems from the existence of an unknown function in general/vehicle/checkup/deletesearch.php, through the parameter VUID lead to SQL...

Projectworlds Leave Management System Project SQL Injection Vulnerability

Projectworlds Leave Management System Project is a leave management system project by Projectworlds India. A SQL injection vulnerability exists in Projectworlds Leave Management System Project v1.0, which stems from the "setsickleave" parameter of admin/setleaves.php not validating incoming...

Cacti security breach

Cacti is a set of open source network traffic monitoring and analysis tools from the Cacti team. The tool through snmpget to obtain data , using RRDtool drawing graphs to analyze , and provide data and user management features . A security vulnerability exists in Cacti versions prior to 1.2.26,...

Projectworlds Student Result Management System SQL Injection Vulnerability

Projectworlds Student Result Management System is a student result management system from Projectworlds India. A SQL injection vulnerability exists in Projectworlds Student Result Management System v1.0, which stems from the "classname" parameter of addresults.php not validating the received...

PT-2023-30898 · Unknown · Railway Reservation System

Name of the Vulnerable Software and Affected Versions: Railway Reservation System version 1.0 Description: The issue concerns multiple Unauthenticated SQL Injection vulnerabilities. The byname parameter of the "train.php" resource does not validate the characters received, and they are sent...

Student Information System SQL Injection Vulnerability

Student Information System is a web-based application platform by Carlo Montero, a personal developer. It can help a university or college to manage student information and academic records. A SQL injection vulnerability exists in Student Information System v1.0, which stems from an id parameter ...

ABO.CMS Security Vulnerabilities

ABO.CMS is a content management platform. A security vulnerability exists in ABO.CMS. An attacker exploited the vulnerability to perform a SQL injection attack...

PT-2023-24299 · Unknown · Automatewoo

Name of the Vulnerable Software and Affected Versions: AutomateWoo versions through 4.9.50 Description: The issue is related to an Improper Neutralization of Special Elements used in an SQL Command, also known as 'SQL Injection'. This allows for potential exploitation by injecting malicious SQL...

WordPress Plugin Advanced Page Visit Counter SQL Injection Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. WordPress Plugin Advanced Page Visit Counter suffer...

WordPress Plugin SEO Change Monitor SQL Injection Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A SQL injection vulnerability exists in...

CVE-2023-48741

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in QuantumCloud AI ChatBot.This issue affects AI ChatBot: from n/a through 4.7.8...

ZTE MF286R SQL Injection Vulnerability

The ZTE MF286R is a wireless router from ZTE Corporation ZTE of China. A security vulnerability exists in the ZTE MF286R that stems from the presence of a SQL injection vulnerability...

CVE-2023-6765

A vulnerability was found in SourceCodester Online Tours & Travels Management System 1.0. It has been rated as critical. This issue affects the function prepare of the file emailsetup.php. The manipulation of the argument name leads to sql injection. The exploit has been disclosed to the public a...

OTCMS SQL Injection Vulnerability

OTCMS Nettie CMS is an article-based web content management system CMS. A SQL injection vulnerability exists in OTCMS version 7.01, which originates from the parameter sqlContent in the file /admin/indbackstage.php that can lead to SQL injection...

ProLion CryptoSpike Security Vulnerability

ProLion CryptoSpike is ProLion's solution for detecting and combating suspicious activity. A security vulnerability exists in ProLion CryptoSpike version 3.0.15P2 that stems from SQL injection when a user searches a REST API endpoint...