S-CMS Enterprise Website Builder System suffers from SQL Injection Vulnerability

S-CMS enterprise station building system is Zibo Shining Network Technology Co., Ltd. developed a specialized enterprise station building solutions for the product. S-CMS enterprise website builder system has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive...

IBM Emptoris Spend Analysis SQL Injection Vulnerability

IBM Emptoris Spend Analysis is a product within IBM's suite of procurement solutions for consolidating, cleansing and categorizing spend data from decentralized systems. A SQL injection vulnerability exists in IBM Emptoris Spend Analysis versions 10.1.0 through 10.1.3, which can be exploited by a...

WordPress i-recommend-this plugin SQL injection vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. i-recommend-this is a plugin used in it for liking and voting on a page. A SQL injection vulnerability exists in the WordPress...

SQL Injection Vulnerability in Chemical CMS of Huaxia Chemical Net

Huaxia chemical network is by Shanghai Danfan network technology limited company founded, is for the chemical industry to provide security, high efficiency, multi-function, system supporting B2B electronic commerce platform of professional website. Huaxia chemical network chemical CMS exists SQL...

SQL Injection Vulnerability in Website Construction System of Shanghai Ming Enterprise Information Technology Co.

Shanghai Ming Enterprise Information Technology Co., Ltd. is a company engaged in website construction, Internet marketing, domain name hosting and Internet application development. There is a SQL injection vulnerability in the website construction system of Shanghai Ming Enterprise Information...

Zoho ManageEngine OpManager SQL Injection Vulnerability (CNVD-2019-34852)

Zoho ManageEngine OpManager is a suite of network, server and virtualization monitoring software from Zoho. A SQL injection vulnerability exists in Zoho ManageEngine OpManager. An attacker can exploit this vulnerability to execute illegal SQL commands...

Open-School SQL Injection Vulnerability

Open-School is a Web-based school management software. The software provides online fee collection, attendance and online library features. A SQL injection vulnerability exists in Open-School version 2.3 Community Edition and version 3.0, which stems from a lack of validation of externally entere...

S-CMS in***.php page suffers from a SQL injection vulnerability

S-CMS is Zibo Shining Network Technology Co., Ltd. developed a solution for enterprise station-building products. S-CMS in.php page has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information...

SQL Injection Vulnerability in TXEHR V15 lo***.aspx Page

Dongguan City, the same share software technology limited company is a focus on manufacturing, commercial circulation, government departments, enterprises and institutions, such as management software development and service company. The same share human resources management system-TXEHR V15...

SQL Injection Vulnerability in Several Parameters of ZZCMS Merchants Module

ZZCMS with product investment type template, you can quickly build product investment website. ZZCMS website builder system investment module multiple parameters exist SQL injection vulnerability, attackers can use the vulnerability to obtain database information...

SQL Injection Vulnerability in OE***.ashx Page of Nanjing Pintech Medical Online Exam System

Nanjing Pintech medical online examination system enables users to realize the organization and management of online examination work. SQL injection vulnerability exists in the OE.ashx page of Nanjing Pinde Technology Medical Online Examination System, which can be exploited by attackers to obtai...

cPanel SQL Injection Vulnerability (CNVD-2019-26168)

cPanel is a set of Web-based automated colocation platforms from the American company cPanel. The platform is primarily used to automate the management of websites and servers. A SQL injection vulnerability exists in cPanel versions prior to 74.0.0. The vulnerability stems from a lack of validati...

SQL Injection Vulnerability in the Frontend of Medical Online Exam System of Nanjing Pinde Technology Co.

Nanjing Pintech medical online examination system enables users to realize the organization and management of online examination work. SQL injection vulnerability exists in the front-end of Nanjing Pinde Technology's medical online examination system, which can be exploited by attackers to obtain...

Django SQL Injection Vulnerability

Django is the Django Foundation's set of open source Web application framework based on the Python language . The framework includes object-oriented mapper , view system , template system and so on. Django has a SQL injection vulnerability that can be exploited by an attacker to execute SQL...

cPanel SQL Injection Vulnerability (CNVD-2019-26253)

cPanel is a set of Web-based automated colocation platform from the US-based cPanel. The platform is primarily used to automate the management of websites and servers. A SQL injection vulnerability exists in versions prior to cPanel 57.9999.54. The vulnerability stems from a lack of validation of...

CVE-2017-18406

cPanel before 67.9999.103 allows SQL injection during eximstats processing SEC-276...

Nextcloud Android app SQL injection vulnerability

Nextcloud Android app is an Android-based mobile application from Nextcloud Germany for accessing Nextcloud servers. A SQL injection vulnerability exists in the Nextcloud Android app versions prior to 3.0.0. The vulnerability stems from a lack of validation of externally entered SQL statements in...

Apache VCL SQL Injection Vulnerability (CNVD-2019-25063)

Apache VCL is a set of open source cloud computing platform of the U.S. Apache Apache Software Foundation. A SQL injection vulnerability exists in Apache VCL versions 2.1 through 2.5. The vulnerability stems from a lack of validation of externally entered SQL statements in database-based...

The vulnerability of the “World Judges” software suite lies in the lack of protection for the SQL query structure, allowing attackers to access database content by manipulating GET queries.

The vulnerability of the “World Judges” software suite is related to the lack of protection for the SQL query structure. Exploiting this vulnerability allows a malicious actor to manipulate the GET request parameters and thereby access the database content remotely...

SQL Injection Vulnerability in Business Management Platform System Da***.aspx

Shenzhen Consulting Micro Information Technology Co., Ltd. is a company engaged in the research and development of management software platform. SQL injection vulnerability exists in the business management platform system Da.aspx, which can be exploited by attackers to obtain sensitive informati...