7729 matches found
SQL Injection Vulnerability in Netsun CMS typeid Parameter
Netsun CMS is a website management system managed and developed by Zhejiang Netsun Business Treasure Co. Netsun CMS suffers from a SQL injection vulnerability. The lack of filtering of the 'typeid' parameter allows an attacker to exploit the vulnerability to obtain sensitive database information...
EyesOfNetwork SQL Injection Vulnerability
EyesOfNetwork EON is an open source, free IT monitoring solution. The solution provides features such as a business process configuration tool, generating pop-up windows when events occur in the active queue, and more. Multiple SQL injection vulnerabilities exist in EyesOfNetwork aka EON 5.0 and...
Castle Rock Computing SNMPc SQL Injection Vulnerability
Castle Rock Computing SNMPc Network Manager is distributed network management system software that monitors all activity on a network. A SQL injection vulnerability exists in versions of Castle Rock Computing SNMPc prior to 2015-12-17. A remote attacker can exploit the vulnerability to extract da...
Apache Geode Information Disclosure Vulnerability
Geode is a data management platform that provides real-time, consistent access to data-critical applications across the entire cloud architecture. Apache Geode sets the security-manager attribute and fails to set user permissions correctly after enabling clustering, allowing remote attackers to...
Sweepstakes Pro Software SQL Injection Vulnerability
Sweepstakes Pro Software is a suite of sweepstakes software to increase email lists, increase social networking, and drive sales by running sweepstakes software in conjunction with sweepstakes. A SQL injection vulnerability exists in the s parameter in both win.php and widgetlb.php in Sweepstakes...
GLink Word Link Script SQL Injection Vulnerability
GPix is a free and powerful text link script based on link ads that runs on PHP/MySQL web servers. A SQL injection vulnerability exists in GLink Word Link Script, which is caused by a failure to effectively filter user-submitted data. An attacker can exploit the vulnerability to obtain sensitive...
FocalPoint Component SQL Injection Vulnerability in Joomla!
Joomla! is the United States Open Source Matters team developed a set of open source content management system CMS. The system provides RSS feeds , site search and other functions . A SQL injection vulnerability exists in the FocalPoint component of Joomla! An attacker can exploit the vulnerabili...
WordPress Spider Event Calendar Plugin SQL Injection Vulnerability
WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports personal blog sites on servers with PHP and MySQL. A SQL injection vulnerability exists in WordPress Spider Event Calendar plugin version 1.5.51, which can be exploited by...
Joomla! OpenCart Component SQL Injection Vulnerability
Joomla! is a content management system which is quite famous in foreign countries.OpenCart is a system component for product management in Joomla! A SQL injection vulnerability exists in the productid parameter of the Joomla! OpenCart index.php page, which can be exploited by attackers to access ...
phplist SQL injection vulnerability (CNVD-2017-04334)
phplist is an application written in PHP for news management. A SQL injection vulnerability exists in phplist, which can be exploited by attackers to access or modify database data...
Omegle Clone SQL Injection Vulnerability
Omegle Clone is a communication software script. An SQL injection vulnerability exists in the Omegle Clone parameter, which could allow a remote, unauthenticated attacker to gain access to sensitive information via this vulnerability...
Secure Download Links 'dc' Parameter SQL Injection Vulnerability
Secure Download Links is an application that provides secure downloads. A SQL injection vulnerability exists in the 'dc' parameter of Secure Download Links, which allows remote, unauthenticated attackers to obtain sensitive information...
Joomla Vik Rent Car component 'caropt' parameter SQL injection vulnerability
Joomla is a software system developed using the PHP language coupled with a MySQL database, and can be implemented on various platforms such as Linux, Windows, MacOSX, and so on. A SQL injection vulnerability exists in the 'caropt' parameter of the Joomla Vik Rent Car component. An attacker can...
SQL Injection Vulnerability in KenCMS V1.1 Enterprise Member Experience System end_time Parameter
KenCMS is a content management system. A SQL injection vulnerability exists in the KenCMS V1.1 Enterprise Member Experience system. The lack of filtering of the 'endtime' parameter allows an attacker to exploit the vulnerability to obtain sensitive database information...
WordPress Mail Masta plugin SQL injection vulnerability (CNVD-2017-02636)
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.Mail Masta aka mail-masta is one of the email plug-ins. WordPress Mail Masta plugin version 1.0 in...
WordPress Mail Masta plugin SQL injection vulnerability (CNVD-2017-02634)
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.Mail Masta aka mail-masta is one of the email plug-ins. WordPress Mail Masta plugin version 1.0 in...
CVE-2016-8940
IBM Tivoli Storage Manager IBM Spectrum Protect 6.1, 6.2, 6.3, and 7.1 does not perform sufficient authority checking on SQL queries. As a result, an attacker is able to submit SQL queries that access database tables that are not intended for access or use by administrators. The access of these...
CVE-2016-9992
IBM Kenexa LCMS Premier on Cloud 9.0, and 10.0.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM Reference : 1992067...
Joomla com_wisroyq component 'Pid' parameter SQL injection vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the 'Pid' parameter of the Joomla comwisroyq component. An attacker can exploit the vulnerability to access or modify database data...
Joomla com_sgpprojects Component SQL Injection Vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the Joomla comsgpprojects component. An attacker can exploit the vulnerability to access or modify database data...