WordPress plugin JSP Store Locator 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

PHPGurukul Directory Management System 注入漏洞

Directory Management System is a directory management system. Directory Management System suffers from a SQL injection vulnerability that originates from a lack of validation of externally entered SQL statements in the parameter email in the file /admin/forget-password.php. An attacker can exploi...

CampCodes Sales and Inventory System 注入漏洞

CampCodes Sales and Inventory System is a sales and inventory system from CampCodes, Inc. An injection vulnerability exists in version 1.0 of the CampCodes Sales and Inventory System, which stems from SQL injection due to incorrect manipulation of the parameter cid in the file...

WordPress plugin Melapress File Monitor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

WordPress plugin Melapress File Monitor 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

Cyber Cafe Management System adminprofile.php File SQL Injection Vulnerability

Cyber Cafe Management System is an internet cafe management system. Cyber Cafe Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter mobilenumber in the file /adminprofile.php. An attacker can...

Curfew e-Pass Management System /admin/edit-pass-detail.php File SQL Injection Vulnerability

Curfew e-Pass Management System is an electronic pass management system. Curfew e-Pass Management System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally-entered SQL statement in the parameter editid in the file /admin/edit-pass-detail.php. A...

ZOHO ManageEngine ADAudit Plus SQL注入漏洞

ZOHO ManageEngine ADAudit Plus is used by ZOHO USA, Inc. to simplify auditing, prove compliance and detect threats. A security vulnerability exists in ZOHO ManageEngine ADAudit Plus 8510 and prior versions, which stems from an authenticated SQL injection reported by OU History...

ChurchCRM EventEditor.php Page SQL Injection Vulnerability

ChurchCRM is an open source church management system. ChurchCRM suffers from a SQL injection vulnerability that stems from a time-based SQL blind injection vulnerability in the EID POST parameter of the EventEditor.php page. No detailed vulnerability details are provided at this time...

Siemens Desigo CC 访问控制错误漏洞

Siemens Desigo CC is an open building management platform from Siemens, Germany, used to produce comfortable, safe and efficient facilities. An access control error vulnerability exists in Siemens Desigo CC, which stems from the server application not validating a specific client request, which...

📄 Feng Office 3.5.1.5 SQL Injection

Feng Office version 3.5.1.5 suffers from a remote SQL injection vulnerability. Titles: fengoffice3.5.1.5 - SQLi Author: nu11secur1ty Date: 05/11/2025 Vendor: https://www.fengoffice.com/ Software: https://trials.fengoffice.com/register?edition=starter Reference:...

NetVision Information ISOinsight 安全漏洞

NetVision Information ISOinsight is an operations and maintenance management platform from China Zhengbang Information NetVision Information. A security vulnerability exists in NetVision Information ISOinsight, which stems from a SQL injection vulnerability that could lead to the execution of...

PHPGurukul Apartment Visitors Management System 安全漏洞

Apartment Visitors Management System is an apartment visitor management system. Apartment Visitors Management System suffers from a SQL injection vulnerability that originates from improper manipulation of the parameter fromdate/todate in the file /admin/bwdates-reports-details.php. An attacker c...

lmxcms 安全漏洞

lmxcms dream cms is a website builder from China Dream Cms lmxcms company. A security vulnerability exists in lmxcms version 1.41, which originates from SQL injection due to incorrect operation of the parameter sortid in the file cadminx005fx001atAction.class.php...

CampCodes Sales and Inventory System 注入漏洞

CampCodes Sales and Inventory System is a sales and inventory system from CampCodes, Inc. An injection vulnerability exists in CampCodes Sales and Inventory System version 1.0, which stems from an incorrect manipulation of the file /pages/creditoradd.php resulting in SQL injection...

PHPGurukul e-Diary Management System 注入漏洞

The e-Diary Management System is an electronic diary management system. An SQL injection vulnerability exists in e-Diary Management System, which originates from the lack of validation of an externally entered SQL statement in the parameter fname in the file /my-profile.php. An attacker can explo...

CVE-2025-4457

A vulnerability classified as critical was found in Project Worlds Car Rental Project 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/approve.php. The manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has be...

Projectworlds Student Project Allocation System 注入漏洞

Projectworlds Student Project Allocation System is a student project allocation system from Projectworlds India. Projectworlds Student Project Allocation System version 1.0 has an injection vulnerability that originates from SQL injection due to the operation of parameter PatBloodGroup1 in file...

CampCodes Online Food Ordering System 注入漏洞

CampCodes Online Food Ordering System is an online food ordering system from CampCodes, Inc. An injection vulnerability exists in version 1.0 of the CampCodes Online Food Ordering System, which originates from an SQL injection caused by the operation of parameter t1verified in file...

SLiMS 9 Bulian 安全漏洞

SLiMS 9 Bulian is a free and open source software from the SLiMS community in Indonesia. It is used for library resource management e.g. books, journals, digital files and other library materials and administration. A security vulnerability exists in SLiMS 9 Bulian version 9.6.1, which originates...