SQL Injection Vulnerability in AVCON6 System Management Platform Name Parameter at Warburg Pincus Information Technology Co.

Huaping Information Technology Co., Ltd. is committed to promoting the innovation of business models in various industries and the enhancement of people's life intelligence through the innovative "Internet +" video technology. A SQL injection vulnerability exists in the name parameter of AVCON6...

Netbaran SQL Injection Vulnerability

Netbaran suffers from a SQL injection vulnerability that can be exploited by an attacker to compromise an application, access or modify data, or exploit a potential vulnerability in the underlying database...

SQL Injection Vulnerability in ID Parameters of Dynamic Easy Network Campus System

Dynamic easy network campus system is based on the actual application needs of customers in the education industry Dynamic easy to provide a complete set of school website application solutions, set "home-school interaction, knowledge sharing, teaching aids," in one, to assist the school website ...

SQL injection vulnerability in weiphp 'application\Home\Controller\PublicLinkController.class.php' page

weiphp is an open source, efficient, simple microsoft development platform. An SQL injection vulnerability exists in the weiphp 'application\Home\Controller\PublicLinkController.class.php' page. Allow attackers can exploit the vulnerability to obtain database sensitive information...

SQL injection vulnerability in the ID parameter of the GG.aspx page of the Quality Supervision Station Comprehensive Information Service Platform of Zhuhai Xinhua Tong Software Co.

ZHXHT Supervision and Regulation Comprehensive Service Platform is a comprehensive platform integrating engineering supervision, testing supervision, commercial mixing supervision, web portal, commercial mixing quality networking supervision, credit rating, OA office, SMS system, wireless...

TYPO3 Frontend Login SQL Injection Vulnerability

TYPO3 is a free and open source content management system maintained by the Swiss TYPO3 Association. A SQL injection vulnerability exists in TYPO3 Frontend Login. Because the application fails to adequately filter user-supplied data before being used in SQL queries, an attacker could exploit the...

SQL injection vulnerability in BlogManage/Video/MyVideo.aspx page of Shanghai Hongyu Information Technology Co.

ECS ECS education site system is a general-purpose CMS program developed by Shanghai Hongyu Information Technology Co., Ltd. for schools, education and other site-building system. ECS BlogManage/Video/MyVideo.aspx page has a SQL injection vulnerability, which can be exploited to obtain sensitive...

SQL Injection Vulnerability in Ektronix Website Building System

Ektrosys developed a general-purpose CMS program for schools, education and other sites. The product has a SQL injection vulnerability, the vulnerability URL is: http://www.sxzkc.cn/BlogManage/Message/ManageInBoxMessage.aspx, the vulnerability parameter is: txtInBoxSearch The attacker can use the...

SQL Injection Vulnerability in zzcms Latest Product Version /zs/search.php Page

ZZCMS highlights the investment and supply and demand functions, you can quickly build a product investment website. zzcms latest product version /zs/search.php page SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive database data...

CVE-2016-5817

SQL injection vulnerability in news pages in Cargotec Navis WebAccess before 2016-08-10 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

ReadyDesk SQL Injection Vulnerability

ReadyDesk is a Web-based helpdesk software solution from ReadyDesk, Inc. A SQL injection vulnerability exists in ReadyDesk version 9.1, which can be exploited by an attacker to compromise an application, access or modify data, or exploit a potential vulnerability in the underlying database...

WordPress Plugin Booking Calendar SQL Injection Vulnerability

WordPress is a blogging platform developed using the PHP language that allows users to set up their own weblogs on servers that support PHP and MySQL databases.Booking Calendar is a WEB-based calendar application. A SQL injection vulnerability exists in the WordPress plugin Booking Calendar. An...

Multiple vulnerabilities in the Joomla! Huge-IT Image Gallery extension (CNVD-2016-05734)

Joomla! is the U.S. Open Source Matters team developed a set of open source content management system CMS, the system provides RSS feeds , site search and other features . Huge-IT Image Gallery is one of the image gallery extension plug-ins . A SQL injection vulnerability and a cross-site scripti...

SQL Injection Vulnerability in Beijing Super Star Huiya Digital Book Literature Service System

Huiya Digital Book and Documentation Service System is an online Chinese library. The product suffers from SQL injection vulnerability, which can be exploited by attackers to obtain database information...

ZOHO ManageEngine Applications Manager SQL Injection Vulnerability

ZOHO ManageEngine Applications Manager is a suite of application performance monitoring software. A SQL injection vulnerability exists in ZOHO ManageEngine Applications Manager, which allows remote attackers to exploit the vulnerability by submitting specially crafted SQL queries to manipulate or...

Tmdocs dns_dhcp SQL Injection Vulnerability

Tmdocs dnsdhcp is a web interface that allows management of DNSmasq a tool for configuring DNS and DHCP and static DHCP leases in Mikrotik routers. A SQL injection vulnerability exists in Tmdocs dnsdhcp. An attacker could use this vulnerability to take control of an application, access or modify...

Xiecheng Intelligent Technology Limited wifi development system suffers from SQL injection vulnerability

Fuzhou Xiecheng Intelligent Technology Co., Ltd. is a commercial WiFi ecosystem-based enterprise integrating commercial WiFi cloud platform development, communication IT hardware integration and customization, and big data products and services. Xiecheng is committed to become the benchmark of wi...

SQL Injection Vulnerability in Remote DBMail Mail Server

DBMail is a database-enabled enterprise mail system developed by TeleSoft. A SQL injection vulnerability exists in Telezine DBMail Mail Server V5.0 updated 2016.07.08. The vulnerability is allowed to be exploited by an attacker to gain access to sensitive database information...

SQL Injection Vulnerability in Shanghai Yongcan CMS

Shanghai Yongcan CMS is a website building system for major enterprises, schools and social organizations. Shanghai Yongcan CMS suffers from SQL injection vulnerability, through which an attacker can obtain database information, resulting in the leakage of sensitive information...

SQL Injection Vulnerability in Magazine System

Magazine System is a newspaper and magazine software designed for colleges and universities. The product suffers from an SQL injection vulnerability, which can be exploited by an attacker to obtain sensitive information from the database...