SQL Injection Vulnerability in YUZHIGUO CMS sh***.asp Page

YUZHIGUO CMS is a content management system written in asp and using utf-8 coding. A SQL injection vulnerability exists in the YUZHIGUO CMS sh.asp page, which can be exploited by an attacker to obtain sensitive information from the database...

SQL injection vulnerability in the ab***.php page bi*** parameter of the website building system of Hefei Yilang Network Technology Co.

Hefei Yilang Network Technology Co., Ltd. is a company specializing in Internet technology services, development and application. Hefei a wave of network technology limited company to build a station system ab.php page bi parameters exist SQL injection vulnerability, an attacker can use the...

Cisco SD-WAN Solution vManage Command Injection Vulnerability

Cisco SD-WAN Solution is a set of network extension solutions from Cisco. vManage is a network management system. A command injection vulnerability exists in the Web UI in Cisco SD-WAN Solution vManage Release prior to 19.2.2, which stems from the Web UI failing to properly validate SQL values. A...

NETSAS Enigma NMS Information Disclosure Vulnerability

NETSAS Enigma NMS is a suite of network management and monitoring tools from NETSAS Australia. A security vulnerability exists in NETSAS Enigma NMS version 65.0.0 and prior versions, which originates from the program not encrypting data stored in the SQL database. An attacker can exploit the...

LogicalDoc SQL Injection Vulnerability

LogicalDOC is a set of document management system developed using Java technology . The system has Lucene full-text search indexing and automatic import and other functions. A SQL injection vulnerability exists in LogicalDoc versions prior to 8.3.3. The vulnerability stems from a lack of validati...

PT-2020-2125 · Cisco · Cisco Sd-Wan Solution Vmanage

Name of the Vulnerable Software and Affected Versions: Cisco SD-WAN Solution vManage software affected versions not specified Description: The issue is related to a lack of protection against SQL query structure attacks in the vManage web interface of Cisco SD-WAN. This could allow a remote...

SQL injection vulnerability in cl***.php page of website building system of Hubei Guosheng Technology Co.

Ltd. is a full-network value marketing service provider, to provide customers with comprehensive digital innovation services, to help traditional enterprises to realize the "Internet +" transformation and upgrading. There is a SQL injection vulnerability in the cl.php page of the website building...

SQL Injection Vulnerability in Xinhuo OA Office System

Xinhu OA office system is an open source and cross-platform office system. SQL injection vulnerability exists in Xinhao OA Office System, which can be exploited by attackers to obtain sensitive information from the database...

SQL injection vulnerability in cp_***.php file of website building system of Henan Lisuo Internet Information Technology Co.

Henan LISO Internet Information Technology Co., Ltd. is a comprehensive Internet service organization that provides network solutions for enterprises to enhance the value of their Internet marketing. Henan Lishou Internet Information Technology Co., Ltd. building system cp.php file there is a SQL...

SuiteCRM SQL Injection Vulnerability (CNVD-2020-18564)

SuiteCRM is a free open source customer relationship management application. SuiteCRM suffers from an SQL injection vulnerability. No detailed vulnerability details are provided at this time...

ShopsN open source mall system v3.0.0 sh*** parameter SQL injection vulnerability

ShopsN open source mall system is a product of Shanghai Yisu Network Technology Co. Ltd. ShopsN open source mall system v3.0.0 sh parameter SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive database information...

Zhenjiang Yunyu Network Technology Co., Ltd. YUNUCMS exists sql injection vulnerability

CloudYou CMS is a free + open source urban substation content management system based on TP5.0 framework as the core development. Zhenjiang Yunyu Network Technology Co., Ltd. YUNUCMS there is a sql injection vulnerability, attackers can use the vulnerability to obtain database sensitive informati...

Sapplica Sentrifugo SQL Blind Bets Vulnerability

Sentrifugo is an intuitive and easy to use open source human resource management software. Sapplica Sentrifugo 3.2 suffers from an SQL blind injection vulnerability. An attacker can exploit this vulnerability to read sensitive information from a database used by the application via the...

SQL injection vulnerability in us***.php file of Jinwei Mobile Mall system

Jinwei mobile mall system is a micro-business customers with a public number, imitation hand Tao page layout, support embedded video playback. Support customized model specifications, the main specifications support attached pictures, each subdivided model support inventory control, subdivided...

XYCMS message board PHP version of the background of the SQL injection vulnerability

XYCMS message board PHP version is to php + MySQL for the development of php message board source code, software for the ordinary message board, can be widely used in corporate websites and other websites that need a message board to use. XYCMS message board PHP version of the background there ar...

ABB eSOMS SQL Injection Vulnerability

ABB eSOMS is a plant operations management system from ABB Switzerland. A SQL injection vulnerability exists in ABB eSOMS 6.0.3 and prior versions. The vulnerability stems from a lack of validation of externally entered SQL statements in database-based applications. An attacker can exploit this...

SQL injection vulnerability in the us***.cl***.php file of YIXUNCMS enterprise website builder system

YIXUNCMS enterprise website construction system is a set of display website system developed by Yixun Software Studio for small and medium-sized enterprises. There is a SQL injection vulnerability in the us.cl.php file of YIXUNCMS enterprise website builder system. Attackers can use the...

Interactive Marketing Intelligent Sales Platform suffers from SQL Injection Vulnerability

Baoding Interactive Enterprise Marketing Planning Co., Ltd. is to provide information technology local services for China's enterprises, in the domestic mode of operation to realize the enterprise information. SQL injection vulnerability exists in Interactive Marketing Intelligent Sales Platform...

SQL injection vulnerability in co***.php page of Yantai Cloud Pulse Network Technology Co.

Yantai Cloud Pulse Network Technology Co., Ltd. is a professional website construction and search engine marketing services provider. Dedicated to small and medium-sized enterprises network marketing services, and website construction, enterprise version of the PC website construction, three-in-o...

Yubico YubiKey Validation Server SQL Injection Vulnerability (CNVD-2020-16073)

Yubico YubiKey Validation Server is an authentication server from the Swedish company Yubico. A SQL injection vulnerability exists in YubiKey Validation Server versions prior to 2.40. The vulnerability stems from a lack of validation of externally entered SQL statements in database-based...