SQL injection vulnerability in admin.class.php file of UQCMS Cloud B2B2C multi-store system

UQCMS cloud business system is a program using PHP + MYSQL, template using smarty template B2B2C e-commerce software. UQCMS cloud business B2B2C multi-store system admin.class.php file SQL injection vulnerability, attackers can exploit the vulnerability to obtain database sensitive information...

SQL injection vulnerability in user.mod.php file of UQCMS Cloud B2B2C multi-store system

UQCMS cloud business system is a program using PHP + MYSQL, template using smarty template B2B2C e-commerce software. UQCMS Cloud Business B2B2C multi-store system user.mod.php file has a SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive database information...

Saxum Numerology Component SQL Injection Vulnerability in Joomla!

Joomla! is an open source content management system CMS. A SQL injection vulnerability exists in the Saxum Numerology component of Joomla! that allows remote attackers to submit a specially crafted SQL request to manipulate the database, which can be used to obtain sensitive information or execut...

PHP Scripts Mall Schools Alert Management Script SQL Injection Vulnerability

PHP Scripts Mall Schools Alert Management Script is a school management system script by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Schools Alert Management Script version 2.0.2. A remote attacker can exploit this vulnerability to bypass authentication...

SQL Injection Vulnerability in UQCMS Mall System admin.class.php Page

UQCMS cloud business system is a B2B2C e-commerce software with the program using PHP+MYSQL and the template using smarty template. UQCMS cloud business system admin.class.php page SQL injection vulnerability, the vulnerability stems from the program does not adequately filter the input submitted...

CVE-2018-1414

IBM Maximo Asset Management 7.5 and 7.6 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 138820...

SQL Injection Vulnerability in ThinkLC V3.9 Classified Information System www_admin_member_paylog.php Page

ThinkLC Classified Information System is a local classified information system built on PHP+MYSQL development. SQL injection vulnerability exists in the wwwadminmemberpaylog.php page of ThinkLC V3.9 Classified Information System, which can be exploited by an attacker to obtain sensitive informati...

CVE-2018-6368

SQL Injection exists in the JomEstate PRO through 3.7 component for Joomla! via the id parameter in a task=detailed action...

CVE-2017-17425

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.3.0.12. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of NVBUSourceDeviceSet Get method requests. The issue...

SQL Injection Vulnerability in Website Construction System of Guangzhou Netsky Network Technology Co.

Guangzhou net days Network Technology Co., Ltd. long-term service in the Internet information technology high-tech positions, specializing in various industries in the enterprise company's e-commerce, website construction and website promotion corporate publicity, software development and other...

Cisco Unified Communications Manager SQL Injection Vulnerability (CNVD-2018-05337)

Cisco Unified Communications Manager CUCM, Unified CM, CallManager is a call-processing component of a unified communications system from Cisco. The component provides a scalable, distributable and highly available enterprise IP telephony call processing solution. A SQL injection vulnerability...

Serverless, Low Cost, Threat Intel Aggregation: ElasticIntel

ElasticIntel is serverless, low cost, threat intel aggregation for enterprise or personal use, backed by ElasticSearch. It is an alternative to expensive threat intel aggregation platforms which ingest the same data feeds you could get for free. ElasticIntel is designed to provide a central,...

ZhandexMap SQL Injection Vulnerability in Joomla!

Joomla! is the United States Open Source Matters team developed a set of open source content management system CMS, the system provides RSS feeds, site search and other functions.Zh YandexMap is used in one of the distribution of maps through the Yandex Maps service component . A SQL injection...

SQL Injection Vulnerability in Shop7z Online Shopping System Supreme Edition

Shop7z online shopping system is ASP online store platform software, providing comprehensive application services based on Internet solutions. Shop7z Online Shopping System Supreme Edition suffers from SQL injection vulnerability, which can be exploited by attackers to access or modify database...

SQL Injection Vulnerability in Uno Network Technology Website Building System

Shenyang Uno Technology Co., Ltd. is a one-stop service brand marketing planning company committed to providing Chinese enterprises with one-stop service suitable for the development of the times, integrating enterprise station building, search engine optimization, WAP website, APP client and so...

SQL Injection Vulnerability in Chiayi County's Management Resources Inquiry System

The Kiawah County Management Information System is a content management system. Chiayi County Management Information Query System suffers from SQL injection vulnerability, which can be exploited by attackers to access or modify sensitive database information...

SQL Injection Vulnerability in zzcms 8.2 user/check.php File

zzcms is an enterprise website builder program It is an enterprise website builder program. An SQL injection vulnerability exists in the user/check.php file of zzcms version 8.2, which can be exploited by attackers to access or modify database data...

Affiligator Affiliate Webshop Management System SQL Injection Vulnerability

Affiligator Affiliate Webshop Management System is a PHP-based web store management system. A SQL injection vulnerability exists in Affiligator Affiliate Webshop Management System version 2.1.0. A remote attacker can inject SQL commands with the help of search/?q=&pricetype=range&price= requests...

Advantech WebAccess/SCADA SQL Injection Vulnerability

Advantech WebAccess is a browser-based HMI software package for human machine interfaces, as well as monitoring and data acquisition SCADA. A SQL injection vulnerability exists in Advantech WebAccess/SCADA, which can be exploited by an attacker to obtain sensitive information about a database...

Website Security Dog (Apache Edition) V4.0 suffers from SQL injection vulnerability (CNVD-2018-02087)

Website Security Dog Apache Edition is a server tool that integrates website content security protection, website resource protection and website traffic protection features. Web Security Dog Apache Edition V4.0 suffers from a SQL injection vulnerability. Allows attackers to exploit the...