SQL Injection Vulnerability in OFCMS System Management Service

OFCMS is a content management system developed based on java technology. A SQL injection vulnerability exists in the OFCMS system administration, which can be exploited by attackers to obtain sensitive information from the database...

Joomla Component HWDVideoShare SQL Injection Vulnerability

Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the Joomla component HWDVideoShare. Allows remote attackers to execute arbitrary SQL commands with different parameters on index.php via "catid itemid=pattern=hwdcorder=videoid=" and have SQL database...

SQL Injection Vulnerability in Super CMS Frontend in***.php Page

Super CMS by the SEO Research Center in order to solve the problem of website optimization and research and development of a set of products, using an object-oriented approach to independent research and development of the MVC framework development, is an open source content management system...

WordPress Plugin PT-Content-Views-Pro SQL Injection Vulnerability

WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. A SQL injection vulnerability exists in the WordPress plugin PT-Content-Views-Pro. An attacker can exploit the vulnerability ...

SQL Injection Vulnerability in the front-end pa***.asp file of Eco Times Enterprise Online Bookkeeping Management System

EcoTime Enterprise Online Bookkeeping Management System is an online bookkeeping software for small and medium-sized enterprises, stores, etc. It is suitable for managing cash flow accounts, accounts receivable and payable accounts, as well as company bookkeeping and other related financial...

ZoneMinder SQL Injection Vulnerability (CNVD-2019-04688)

ZoneMinder is an open source video surveillance software system. The system supports IP, USB and analog cameras and more. ZoneMinder 1.32.3 and earlier versions of skins/classic/views/events.php file has a SQL injection vulnerability , a remote attacker can with the help of 'filterQueryterms0cnj'...

SQL Injection Vulnerability in YCCMS v3.3

YCCMS is a PHP version of a lightweight CMS builder. YCCMS v3.3 suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...

SQL Injection Vulnerability in the Frontend of Worklog 25.0 System by Kaixin Worklog

Worklog is a B/S based software for structuring intra-enterprise collaborative work. A SQL injection vulnerability exists in the frontend of the Qixing Worklog 25.0 system, which can be exploited by attackers to manipulate the database...

SQL Injection Vulnerability in Penta Campus Network Application System Management Software

PantoSchool.Net is a complete solution for networked learning schools! A SQL injection vulnerability exists in PantoSchool.Net Application System Management Software. An attacker can exploit the vulnerability to obtain sensitive information from the database...

SQL Injection Vulnerability in the Frontend Pr***.ashx Page of eDoc, an Electronic Document Repository

Electronic document library eDoc is a click document management system developed by Anhui Qixing Studio. SQL injection vulnerability exists in the front-end Pr.ashx page of eDoc, which can be exploited by attackers to obtain sensitive information from the database...

SQL Injection Vulnerability in the Website Building System of Beijing Nightcat Network Technology Co.

Beijing Nightcats Network Technology Co., Ltd. is a company that specializes in providing website building services to users. There is a SQL injection vulnerability in the website building system of Beijing Nightcats Network Technology Co. Ltd, which can be exploited by attackers to obtain...

SQL Injection Vulnerability in Smart Meter Collective Reading Management System Lo***.aspx Page

Qingdao Automatic Instrumentation Co., Ltd. is a new joint-stock enterprise integrating R&D and manufacturing. There is a SQL injection vulnerability in the Lo.aspx page of the Intelligent Instrumentation Collector Management System, which can be exploited by attackers to obtain sensitive...

SQL Injection Vulnerability in File System Profile Frontend Bi***.ashx Page

The filing system Profile is an in-house employee management software. A SQL injection vulnerability exists in the frontend Bi.ashx page of File System Profile, which can be exploited by attackers to obtain sensitive information from the database...

SQL Injection Vulnerability in Bidding System Bid Frontend ge***.aspx Page

Qixing Bidding System Bid is a system suitable for enterprises to collect information on bidding information of government procurement, engineering construction, land grant, etc., and to track the progress of works and payment of successful projects. A SQL injection vulnerability exists in the...

SQL Injection Vulnerability in PHPMyWind in***_up***.php File

PHPMyWind is a PHP + MySQL based development of W3C standards-compliant site building engine . A SQL injection vulnerability exists in the PHPMyWind inup.php file. An attacker can exploit this vulnerability to obtain sensitive database information...

SQL Injection Vulnerability in PHPMyWind si***_up***.php File

PHPMyWind is a PHP + MySQL based development of W3C standards-compliant site building engine . A SQL injection vulnerability exists in the PHPMyWind siup.php file. An attacker can exploit this vulnerability to obtain sensitive database information...

SQL Injection Vulnerability in PHPMyWind we***_up***.php File

PPMyWind is a PHP + MySQL based development of W3C-compliant building engine . A SQL injection vulnerability exists in the PHPMyWind weup.php file. An attacker can exploit this vulnerability to obtain sensitive database information...

Yeswiki Cercopitheque SQL Injection Vulnerability

Yeswiki Cercopitheque is a Wiki system written in PHP. The system is mainly used to create and manage websites in a collaborative way. A SQL injection vulnerability exists in the 'Bazar' page in Yeswiki Cercopitheque 2018-06-19-1 and earlier versions. A remote attacker can exploit the vulnerabili...

AbiSoft Ticketly SQL Injection Vulnerability

AbiSoft Ticketly is a PHP and MySQL based ticketing software from AbiSoft in the Republic of Guatemala. A SQL injection vulnerability exists in AbiSoft Ticketly version 1.0, which can be exploited by remote attackers to execute arbitrary SQL commands with the help of multiple parameters...

S-CMS News Portal System SQL Injection Vulnerability in Frontend ne***/fo***.php Page

S-CMS news portal system is Zibo Shining Network Technology Co., Ltd. developed a specialized enterprise to provide solutions to build a station. A SQL injection vulnerability exists in the front-end ne/fo.php page of the S-CMS news portal system. An attacker can exploit the vulnerability to obta...