CMS Made Simple SQL注入漏洞

CMS Made Simple CMSMS is an open source content management system CMS by Cmsms team. The system supports role-based permission management system , wizard-based installation and update mechanism , intelligent caching mechanism and so on. A security vulnerability exists in CMS Made Simple version...

Apache Log4cxx SQL注入漏洞

Apache Log4cxx is a C++ logging framework modeled after Apache log4j from the Apache Foundation. An SQL injection vulnerability exists in Apache Log4cxx versions prior to 1.1.0 that stems from not properly escaping fields sent to the database when using the ODBC add-in to send log messages to the...

CVE-2023-30077

Judging Management System v1.0 by oretnom23 was discovered to vulnerable to SQL injection via /php-jms/reviewresult.php?maineventid=, maineventid...

Evasys SQL注入漏洞

Evasys is a platform for fully automated survey and exam solutions for online, paper-based and mixed use from Evasys Germany. A security vulnerability exists in Evasys versions prior to v8.2 Build 2286 and v9.x prior to v9.0 Build 2401, which stems from the presence of a SQL injection that allows...

AC Repair and Services System SQL注入漏洞

AC Repair and Services System is an air conditioning repair and services system by Carlo Montero Personal Developer. A SQL injection vulnerability exists in AC Repair and Services System version 1.0, which stems from a misuse of the parameter id resulting in sql injection...

Service Provider Management System SQL注入漏洞

Service Provider Management System is a web-based application by Carlo Montero, an individual developer. It is designed to provide dynamic websites for service provider companies. A SQL injection vulnerability exists in Service Provider Management System version 1.0, which can be exploited by...

PrestaShop SQL注入漏洞

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides multiple payment methods, short message alerts and product image scaling. PrestaShop suffers from a SQL injection vulnerability. An attacker exploiting this vulnerability can write,...

PT-2023-18368 · Unknown · Campcodes Retro Basketball Shoes Online Store

Name of the Vulnerable Software and Affected Versions: Campcodes Retro Basketball Shoes Online Store version 1.0 Description: A critical issue has been found in the processing of the file details.php, where the manipulation of the id argument leads to sql injection. The attack can be initiated...

PT-2023-18379 · Sourcecodester · Sourcecodester Task Reminder System

Name of the Vulnerable Software and Affected Versions: SourceCodester Task Reminder System version 1.0 Description: A critical issue has been found in the SourceCodester Task Reminder System, affecting the file /admin/user/manage user.php. The manipulation of the id argument leads to SQL injectio...

PT-2023-21962

Name of the Vulnerable Software and Affected Versions ExpressTech Quiz And Survey Master versions through 8.1.4 Description The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for potential exploitation by...

Purchase Order Management System SQL注入漏洞

Purchase Order Management System is a Purchase Order Management System by Carlo Montero Personal Developer. A SQL injection vulnerability exists in SourceCodester Purchase Order Management System version 1.0, which is caused by incorrect manipulation of the parameter id resulting in sql injection...

Judging Management System SQL注入漏洞

Judging Management System is a judging management system by Carlo Montero, a personal developer. A SQL injection vulnerability exists in the SourceCodester Judging Management System version 1.0, which is caused by an unknown function in the file editcontestant.php that results in a sql injection...

CVE-2023-2074

A vulnerability was found in Campcodes Online Traffic Offense Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /classes/Master.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely...

CVE-2023-2073

A vulnerability was found in Campcodes Online Traffic Offense Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /classes/Login.php. The manipulation of the argument password leads to sql injection. The attack can be...

Campcodes Online Traffic Offense Management System SQL注入漏洞

Campcodes Online Traffic Offense Management System is a web-based traffic offense management system. A SQL injection vulnerability exists in Campcodes Online Traffic Offense Management System v1.0. The vulnerability stems from the lack of validation of external input SQL statements in the paramet...

Campcodes Advanced Online Voting System SQL注入漏洞

Campcodes Advanced Online Voting System is an online voting system. Campcodes Advanced Online Voting System v1.0 is vulnerable to SQL injection. The vulnerability stems from the lack of validation of external input SQL statements in the parameter id of the file /admin/ballotup.php, which can be...

Campcodes Advanced Online Voting System SQL注入漏洞

Campcodes Advanced Online Voting System is an online voting system. Campcodes Advanced Online Voting System v1.0 is vulnerable to SQL injection. The vulnerability stems from the lack of validation of external input SQL statements in the parameter id of the file /admin/votersrow.php, which can be...

PT-2023-17292

Name of the Vulnerable Software and Affected Versions Eskom Water Metering Software versions prior to 23.04.06 Description The issue is related to an SQL Injection vulnerability, which allows for Command Line Execution through SQL Injection. This is due to the improper neutralization of special...

Auto Dealer Management System SQL注入漏洞

Auto Dealer Management System is a car dealer management system by Carlo Montero Personal Developer. A security vulnerability exists in Auto Dealer Management System v1.0. An attacker can exploit this vulnerability to perform SQL injection attacks...

Bank Locker Management System SQL注入漏洞

Bank Locker Management System is a bank locker management system. A SQL injection vulnerability exists in PHPGurukul Bank Locker Management System version 1.0, which stems from a problem with the file recovery.php, where manipulation of the parameter uname/mobile can lead to sql injection...