WiKID Systems 2FA Enterprise Server searchDevices.jsp SQL Injection Vulnerability

WiKID Systems 2FA Enterprise Server is a two-factor authentication server from WiKID Systems, USA. A SQL injection vulnerability exists in WiKID Systems 2FA Enterprise Server searchDevices.jsp, which can be exploited by an attacker to submit a specially crafted SQL request to manipulate a databas...

Bypass Vulnerability in Website Security Dog's SQL Injection Blocking Feature (CNVD-2019-41613)

Security Dog is a comprehensive server security protection tool that integrates server security protection and security management. A bypass vulnerability exists in the SQL injection blocking feature of Website Security Dog. An attacker can bypass the SQL injection blocking feature of Website...

YouPHPTube subscribe.json.php file SQL Injection Vulnerability

YouPHPTube is a PHP-based video website system. A SQL injection vulnerability exists in the /objects/subscribe.json.php file in YouPHPTube version 7.6. The vulnerability stems from a lack of validation of externally entered SQL statements in database-based applications. An attacker can exploit th...

WordPress wti-like-post plugin SQL injection vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. wti-like-post is a plugin used to add likes to web pages. A SQL injection vulnerability exists in the WordPress wti-like-post plugin. ...

WordPress awesome-filterable-portfolio plugin SQL injection vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. awesome-filterable-portfolio is a plugin that supports the creation, management and publishing of personal portfolios. A SQL injection...

WordPress wpDataTables Lite SQL Injection Vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. wpDataTables Lite is a chart creation plugin used in it. WordPress wpDataTables Lite has a SQL injection vulnerability. The...

Tooonyy dormsystem SQL Injection Vulnerability

Tooonyy dormsystem is a dormitory information management system. A SQL injection vulnerability exists in the admin.php file in versions 1.3 and earlier of Tooonyy dormsystem, which stems from a lack of validation of externally-entered SQL statements in database-based applications and can be...

SQL injection vulnerability in c**l.asp page of Chengdu Firefox Technology Co.

Chengdu Firefox Technology Co., Ltd. is a set of research, promotion, development of new technology areas of the network, mainly dedicated to the enterprise information technology services of the professional network companies, is based on the Internet to provide a comprehensive e-commerce...

SQL injection vulnerability in c***w.asp page of Chengdu Firefox Technology Co.

Chengdu Firefox Technology Co., Ltd. is a set of research, promotion, development of new technology areas of the network, mainly dedicated to the enterprise information technology services of the professional network companies, is based on the Internet to provide a comprehensive e-commerce...

SQL injection vulnerability in seacms backend ad***_co***.php page (CNVD-2019-41065)

seacms ocean movie management system, ocean cms is a video-on-demand system based on PHP + MySql technology. There is a SQL injection vulnerability in the adco.php page in the background of seacms. Attackers can use the vulnerability to obtain sensitive information in the database...

Cisco Firepower Management Center SQL Injection Vulnerability (CNVD-2019-34733)

Cisco Firepower Management Center FMC is a new generation of firewall management center software from Cisco. A SQL injection vulnerability exists in the web-based management interface in Cisco FMC, which stems from the program's failure to properly validate input. A remote attacker could exploit...

SQL injection vulnerability in c**e.asp of Chengdu Firefox Technology Co.

Chengdu Firefox Technology Co., Ltd. is a set of research, promotion, development of new technology areas of the network, mainly dedicated to the enterprise information technology services of the professional network companies, is based on the Internet to provide a comprehensive e-commerce...

The vulnerability in the web interface of the software-hardware management interface for Cisco Firepower Management Center allows a malicious actor to execute arbitrary SQL queries.

The vulnerability of the web interface for managing the software-hardware environment of Cisco Firepower Management Center is related to input validation errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...

The vulnerability in the web interface of the software-hardware management interface for Cisco Firepower Management Center allows a malicious actor to execute arbitrary SQL queries.

The vulnerability of the web interface for managing the software-hardware environment of Cisco Firepower Management Center is related to input validation errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...

The vulnerability in the web interface of the software-hardware management interface for Cisco Firepower Management Center allows a malicious actor to execute arbitrary SQL queries.

The vulnerability of the web interface for managing the software-hardware environment of Cisco Firepower Management Center is related to input validation errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...

The vulnerability in the web interface of the software-hardware management interface for Cisco Firepower Management Center allows a malicious actor to execute arbitrary SQL queries.

The vulnerability of the web interface for managing the software-hardware environment of Cisco Firepower Management Center is related to input validation errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...

SQL injection vulnerability in the frontend of Queue Evaluation Integrated Management System V5.3 (CNVD-2019-41011)

Queuing evaluation integrated management system V5.3, make full use of the queuing time for self-service filling operations, fill out a single queue but not the number, lifting the customer to fill out a single worry. SQL injection vulnerability exists in the frontend of Queue Evaluation Integrat...

Chengdu Firefox Technology Co., Ltd. website builder system suffers from SQL injection vulnerabilities

Chengdu Firefox Technology Co., Ltd. is a set of research, promotion and development of new technology areas of the network, mainly dedicated to the enterprise information technology services of professional network companies, with a number of Internet-related products and services. Chengdu Firef...

SQL Injection

Overview knex is a query builder for PostgreSQL, MySQL and SQLite3 Affected versions of this package are vulnerable to SQL Injection. None Remediation Upgrade knex to version 0.19.5 or higher. References - GitHub Commit - GitHub PR Credit: Snyk Security Research Team...

SQL Injection Vulnerability in Website Building System of Zigong Tianqi Network System Co.

Zigong Tianqi Network System Co., Ltd. was founded in 1999, the company is committed to network construction. There is a SQL injection vulnerability in the website building system of Zigong Tianqi Network System Co., Ltd, which can be exploited by attackers to obtain sensitive information from th...