AXIS License Plate Verifier SQL Injection Vulnerability

AXIS License Plate Verifier is a license plate verifier from AXIS Sweden. Suitable for free flow, low speed traffic and vehicle access control scenarios, it makes detecting and reading license plates easy. A security vulnerability exists in AXIS License Plate Verifier 2.8.3 and earlier versions,...

Yunyecms SQL注入漏洞

Yunyecms is a Php-based platform available for building branded websites for small and medium-sized businesses by the individual developer of Yunyecms. A SQL injection vulnerability exists in Yunyecms version 2.0.2, which originated from allowing remote attackers to run arbitrary SQL commands via...

Rail Pass Management System SQL注入漏洞

Rail Pass Management System is a pass management system. A security vulnerability exists in the Rail Pass Management System version v.1.0 that could allow a remote attacker to execute arbitrary code via the editid parameter of the edit-cateogry-detail.php file...

Rail Pass Management System SQL注入漏洞

Rail Pass Management System is a pass management system. A security vulnerability exists in the Rail Pass Management System version v.1.0 that could allow a remote attacker to execute arbitrary code via the viewid parameter of the view-enquiry.php file...

phpscriptpoint RecipePoint SQL注入漏洞

RecipePoint is a SaaS multi-vendor recipe platform from the phpscriptpoint team. A SQL injection vulnerability exists in phpscriptpoint RecipePoint version 1.9, which stems from the parameter text/category/type/difficulty/cuisine/cookingmethod in the file /recipe-result that can lead to sql...

PT-2023-26604 · Unknown · Campcodes Beauty Salon Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Beauty Salon Management System version 1.0 Description: A critical vulnerability has been found in the system. The issue is related to an unknown function of the file /admin/del service.php, where the manipulation of the editid...

PT-2023-26308 · Unknown · Hospital Management System

Name of the Vulnerable Software and Affected Versions: Hospital Management System version 1.0 Description: A critical issue affects the processing of the file patientprofile.php, where the manipulation of the address argument leads to sql injection. The attack can be initiated remotely...

WordPress Plugin Maintenance SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A SQL injection vulnerability exists in...

Locke-Bot SQL注入漏洞

Locke-Bot is a custom discord bot developed for LOCKE by HKing2802 Personal Developer. A security vulnerability exists in Locke-Bot version 2.0.2, which stems from an SQL injection vulnerability that allows remote attackers to run arbitrary SQL commands via a crafted string...

CVE-2023-3695

A vulnerability classified as critical has been found in Campcodes Beauty Salon Management System 1.0. Affected is an unknown function of the file add-product.php. The manipulation of the argument category leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

Campcodes Beauty Salon Management System SQL注入漏洞

Campcodes Beauty Salon Management System is a beauty salon management system from Campcodes. A SQL injection vulnerability exists in Campcodes Beauty Salon Management System version 1.0, which stems from a SQL injection vulnerability in the parameter category...

PT-2023-25690 · Pimcore · Pimcore

Name of the Vulnerable Software and Affected Versions: pimcore/pimcore versions prior to 10.5.24 Description: The issue is related to SQL Injection in the GitHub repository pimcore/pimcore. Recommendations: For versions prior to 10.5.24, update to version 10.5.24 or later to resolve the issue...

UBUNTU-CVE-2023-37278

GLPI is a Free Asset and IT Management Software package, Data center management, ITIL Service Desk, licenses tracking and software auditing. An administrator can trigger SQL injection via dashboards administration. This vulnerability has been patched in version 10.0.9...

CVE-2023-2957

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Lisa Software Florist Site allows SQL Injection.This issue affects Florist Site: before 3.0...

CVE-2023-37628

Online Piggery Management System 1.0 is vulnerable to SQL Injection...

CVE-2023-27845

SQL injection vulnerability found in PrestaShop lekerawenocs before v.1.4.1 allow a remote attacker to gain privileges via the KerawenHelper::setCartOperationInfo, and KerawenHelper::resetCheckoutSessionData components...

PT-2023-21370 · Unknown · Prestashop Lekerawen Ocs

Name of the Vulnerable Software and Affected Versions: PrestaShop lekerawen ocs versions prior to 1.4.1 Description: A SQL injection issue allows a remote attacker to gain privileges via the KerawenHelper::setCartOperationInfo and KerawenHelper::resetCheckoutSessionData components. Recommendation...

CVE-2023-36189

SQL injection vulnerability in langchain before v0.0.247 allows a remote attacker to obtain sensitive information via the SQLDatabaseChain component...

Progress Software MOVEit Transfer SQL注入漏洞

Progress Software MOVEit Transfer is an automated file transfer software from Progress Software, USA. The software supports file transfer and provides file transfer activity monitoring. A security vulnerability exists in Progress Software MOVEit Transfer that stems from an SQL injection...

PT-2023-25704 · Kanboard +1 · Kanboard +1

Name of the Vulnerable Software and Affected Versions: Kanboard versions prior to 1.2.31 Description: Kanboard is project management software that focuses on the Kanban methodology. In versions prior to 1.2.31, an authenticated user is able to perform a SQL Injection, leading to a privilege...