PrivateSky apersistence SQL注入漏洞

PrivateSky apersistence is a module of PrivateSky open source. PrivateSky apersistence suffers from a SQL injection vulnerability. Attackers exploit this vulnerability to cause sql injection...

WordPress plugin WooCommerce SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress plugin WooCommerce 1.0 and previo...

PT-2023-10235 · Vinylmap · Vinylmap

Name of the Vulnerable Software and Affected Versions: vinylmap version 2071174A Description: A critical issue has been found, affecting the contact function of the file recordstoreapp/views.py. This issue leads to sql injection. Recommendations: Apply the patch...

krail-jpa SQL注入漏洞

krail-jpa is a KrailOrg open source module for use with Krail. The module provides JPA functionality . A SQL injection vulnerability exists in krail-jpa versions prior to 0.9.1, which stems from an unknown partial impact and operates to cause SQL injection...

desafio_buzz_woody SQL注入漏洞

desafiobuzzwoody is an application by Bruno Mattoso Gonçalves Personal Developer. A SQL injection vulnerability exists in desafiobuzzwoody that stems from unknown processing that operates to cause SQL injection...

Judging Management System SQL注入漏洞

Judging Management System is a Judging Management System by Carlo Montero Personal Developer. A SQL injection vulnerability exists in Judging Management System v1.0, which originates from a username parameter containing a SQL injection...

PT-2023-9790 · Visteon · Visteon Infotainment System

Name of the Vulnerable Software and Affected Versions: Visteon Infotainment System affected versions not specified Description: This issue allows physically present attackers to execute arbitrary code on affected installations of the Visteon Infotainment system. Authentication is not required to...

CVE-2022-47864

Lead Management System v1.0 is vulnerable to SQL Injection via the id parameter in removeCategories.php...

CVE-2022-47865

Lead Management System v1.0 is vulnerable to SQL Injection via the id parameter in removeOrder.php...

Criminals Blauw SQL注入漏洞

Criminals Blauw is an application by NoxxieNl Individual Developer. Criminals Blauw suffers from a SQL injection vulnerability that stems from an incorrect manipulation of the parameter gambleMoney resulting in sql injection...

Lead Management System SQL注入漏洞

Lead management system is a lead management system developed by Mayuri K. A SQL injection vulnerability exists in Lead Management System v1.0, which stems from the lack of validation of external input SQL statements in the id parameter of removeOrder.php, and can be exploited by attackers to The...

EasyVista SQL注入漏洞

EasyVista is an application from EasyVista, Inc. creates digital experiences that help organizations work smarter, faster, and better automatically. A SQL injection vulnerability exists in EasyVista version 2020.2.125.3, which stems from the presence of SQL injection...

CVE-2022-4358

The WP RSS By Publishers WordPress plugin through 0.1 does not properly sanitize and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin...

WordPress plugin Web Invoice SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerability exist...

Panel Builder 跨站脚本漏洞

Panel Builder is an open source plugin from Modern Tribe Agency. It is used for block content control in WordPress Classic Editor. Panel Builder has a security vulnerability. Attackers use this vulnerability to perform sql injection attacks...

WordPress Plugin Contest Gallery SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...

Helmet Store Showroom Site SQL注入漏洞

Helmet Store Showroom Site is a platform by Carlo Montero Personal Developer. It allows potential customers of Inquiries Stores to virtually display helmet products. A security vulnerability exists in Helmet Store Showroom Site v1.0, which stems from an SQL injection vulnerability via...

WordPress plugin Dokan SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerability exist...

CVE-2022-33875

An improper neutralization of special elements used in an SQL Command 'SQL Injection' vulnerability in Fortinet FortiADC version 7.1.0, version 7.0.0 through 7.0.2 and version 6.2.4 and below allows an authenticated attacker to execute unauthorized code or commands via specifically crafted HTTP...

Fortinet FortiADC SQL注入漏洞

Fortinet FortiADC is an application delivery controller from Fortinet, Inc. Fortinet FortiADC is vulnerable to SQL injection, which stems from the use of special elements that are not neutralized and can be exploited by an attacker to execute unauthorized code or send commands via specially craft...