SQL injection vulnerability in admin.class.php file of UQCMS Cloud B2B2C multi-store system

UQCMS cloud business system is a program using PHP + MYSQL, template using smarty template B2B2C e-commerce software. UQCMS cloud business B2B2C multi-store system admin.class.php file SQL injection vulnerability, attackers can exploit the vulnerability to obtain database sensitive information...

SQL injection vulnerability in user.mod.php file of UQCMS Cloud B2B2C multi-store system

UQCMS cloud business system is a program using PHP + MYSQL, template using smarty template B2B2C e-commerce software. UQCMS Cloud Business B2B2C multi-store system user.mod.php file has a SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive database information...

SQL Injection Vulnerability in ThinkLC V3.9 Classified Information System www_admin_member_paylog.php Page

ThinkLC Classified Information System is a local classified information system built on PHP+MYSQL development. SQL injection vulnerability exists in the wwwadminmemberpaylog.php page of ThinkLC V3.9 Classified Information System, which can be exploited by an attacker to obtain sensitive informati...

CVE-2018-6368

SQL Injection exists in the JomEstate PRO through 3.7 component for Joomla! via the id parameter in a task=detailed action...

SQL Injection Vulnerability in Website Construction System of Guangzhou Netsky Network Technology Co.

Guangzhou net days Network Technology Co., Ltd. long-term service in the Internet information technology high-tech positions, specializing in various industries in the enterprise company's e-commerce, website construction and website promotion corporate publicity, software development and other...

ZhandexMap SQL Injection Vulnerability in Joomla!

Joomla! is the United States Open Source Matters team developed a set of open source content management system CMS, the system provides RSS feeds, site search and other functions.Zh YandexMap is used in one of the distribution of maps through the Yandex Maps service component . A SQL injection...

Advantech WebAccess/SCADA SQL Injection Vulnerability

Advantech WebAccess is a browser-based HMI software package for human machine interfaces, as well as monitoring and data acquisition SCADA. A SQL injection vulnerability exists in Advantech WebAccess/SCADA, which can be exploited by an attacker to obtain sensitive information about a database...

Web Security Dog (Apache Edition) V4.0 suffers from SQL Injection Vulnerability

Website Security Dog Apache Edition is a server tool that integrates website content security protection, website resource protection and website traffic protection features. Web Security Dog Apache Edition V4.0 suffers from a SQL injection vulnerability. An attacker can exploit the vulnerability...

SQL Injection Vulnerability in Dispnews.asp Page of Website Construction System of Jingmen Xinnet Technology Development Co.

Jingmen City, Xin network technology development limited company is a network brand marketing and enterprise management information technology professional service providers. There is a SQL injection vulnerability in the dispnews.asp page of the website construction system of Jingmen Xinnet...

SQL Injection Vulnerability in Xi'an Hongbo Network Technology Co.

Xi'an Hongbo Network Technology Co., Ltd. is a professional design team integrating network preparation, digital film and television production, and brand visual design. Xi'an Hongbo Network Technology Co., Ltd. website construction system suffers from SQL injection vulnerability. Attackers can...

CVE-2017-1670

IBM Tivoli Key Lifecycle Manager 2.5, 2.6, and 2.7 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 133637...

Gespage SQL Injection Vulnerability

Gespage is an application for managing and monitoring printing devices from the French company Gespage. A SQL injection vulnerability exists in Gespage. A remote attacker can exploit this vulnerability by sending the 'showprn' parameter to the webapp/users/prnow.jsp file or the 'showmonth'...

OpenText Document Sciences xPression xDashboard SQL Injection Vulnerability

OpenText Document Sciences xPression formerly EMC Document Sciences xPression is a suite of document output management and customer communication solutions from OpenText Canada, Inc. The solution integrates an organization's Customer Relationship Management CRM, Enterprise Content Management ECM,...

SQL Injection Vulnerability in phpaaCMS article.add.php File

phpaaCMS is a simple article management system. A SQL injection vulnerability exists in the phpaaCMS article.add.php file. An attacker can exploit the vulnerability to obtain sensitive database information...

Quest NetVault Backup SQL Injection Vulnerability (CNVD-2017-37634)

Quest NetVault Backup is a suite of data backup software from Quest Software, USA. A SQL injection vulnerability in the handling of NVBUBackup ClientList method requests in Quest NetVault Backup versions prior to 11.4.5 stems from the program's failure to properly detect user-submitted strings...

Quest NetVault Backup SQL Injection Vulnerability (CNVD-2017-37630)

Quest NetVault Backup is a suite of data backup software from Quest Software, USA. A SQL injection vulnerability exists in the handling of NVBUBackup Get method requests in Quest NetVault Backup versions prior to 11.4.5, which stems from the program failing to properly detect user-submitted strin...

Quest NetVault Backup SQL Injection Vulnerability (CNVD-2017-37642)

Quest NetVault Backup is a suite of data backup software from Quest Software, USA. A SQL injection vulnerability in the handling of NVBUTransferHistory Get method requests in Quest NetVault Backup versions prior to 11.4.5 stems from the program's failure to properly detect user-submitted strings...

PHP Scripts Mall Doctor Search Script SQL Injection Vulnerability

PHP Scripts Mall Doctor Search Script is a PHP based online doctor search website script by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Doctor Search Script version 1.0. The vulnerability can be exploited by a remote attacker to inject SQL commands by sending...

PHP Scripts Mall Event Search Script SQL Injection Vulnerability

PHP Scripts Mall Event Search Script is a PHP based online event registration script from PHP Scripts Mall India. The script can be embedded into a website and accept online event bookings from other organizations or companies. A SQL injection vulnerability exists in PHP Scripts Mall Event Search...

FS Quibids Clone SQL Injection Vulnerability

FS Quibids Clone is a set of online auction website scripts based on PHP and MySQL. A SQL injection vulnerability exists in FS Quibids Clone version 1.0. A remote attacker can inject SQL commands by sending the 'productid' parameter to the itechd.php file...