Dongguan Golden Drum Network Technology Co., Ltd. website construction system has SQL injection vulnerabilities

Dongguan Golden Drum Network Technology Co., Ltd. is a network company, specializing in the field of website design and Internet marketing. Dongguan Golden Drum Network Technology Co., Ltd. website construction system has a SQL injection vulnerability, attackers can use the vulnerability to obtai...

SQL Injection Vulnerability in ThinkLC Classifieds Information System biz.php Page

ThinkLC Classified Information System is a local classified information system built on PHP+MYSQL development. A SQL injection vulnerability exists in the ThinkLC Classifieds Information System biz.php page. The vulnerability is caused due to the system failing to effectively filter user-submitte...

IBM Atlas eDiscovery Process Management SQL Injection Vulnerability

IBM Atlas eDiscovery Process Management is a product within the Information Lifecycle Governance solution from IBM USA that is used to help attorneys, paralegals, and evidence supervisors rigorously and logically manage legal evidence retention workflows. A SQL injection vulnerability exists in I...

Shenzhen Longyi Pulse Network Technology Co., Ltd. website construction system has SQL injection vulnerability

Shenzhen Longyi Pulse Network Technology Co., Ltd. is committed to providing enterprises and individuals with website construction, animation design, program development, domain name space services, network services and other information services. There is a SQL injection vulnerability in the...

SQL Injection Vulnerability in DuoDuo Rebate System V8.3_UTF8 official version admin\mod\goods\list.act.php

DuoDuo rebate system is for e-commerce rebate, shopping guide to provide solutions, is the open source PHP rebate site system. DuoDuo rebate web system V8.3UTF8 official version admin\mod\goods\list.act.php SQL injection vulnerability. The vulnerability is due to the system failing to effectively...

ARK-Web A-Member and A-Member for MT cloud SQL Injection Vulnerabilities

ARK-Web A-Member is a membership site builder plugin for Movable Type from ARK-Web Japan.A-Member for MT cloud is its MT cloud based version. A SQL injection vulnerability exists in ARK-Web A-Member and A-Member for MT cloud 3.8.6 and earlier versions. A remote attacker can exploit this...

CVE-2017-12364

A SQL Injection vulnerability in the web framework of Cisco Prime Service Catalog could allow an unauthenticated, remote attacker to execute unauthorized Structured Query Language SQL queries. The vulnerability is due to a failure to validate user-supplied input that is used in SQL queries. An...

SQL Injection Vulnerability in ECShop 3.0.0

ECShop is a B2C independent online store system, suitable for enterprises and individuals to quickly build a personalized online store. The system is based on PHP language and MYSQL database structure development of cross-platform open source program. A SQL injection vulnerability exists in the...

ShyPost Enterprise Management System suffers from SQL Injection Vulnerability

ShyPost Enterprise Management System is a set of intelligent ASP-based website building software. ShyPost Enterprise Management System suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...

Serendipity blog component SQL injection vulnerability

Serendipity is a PHP-based blogging system. The system supports the creation of online diaries, blogs, web pages, etc. blog component is one of the blogging components. A SQL injection vulnerability exists in the blog component in Serendipity version 2.0.3. A remote attacker can exploit this...

Hefei Chenguang Electronic Technology Co., Ltd. website construction system multiple parameters exist SQL injection vulnerability

Hefei Chenguang Electronic Technology Co., Ltd. is a domestic Internet operation service provider with technical strength and rich experience in website construction and operation. Hefei Chenguang Electronic Technology Co., Ltd. website construction system has SQL injection vulnerability in sever...

Cisco Unified Communications Manager SQL Injection Vulnerability

Cisco Unified Communications Manager CUCM, Unified CM, CallManager is a call-processing component of a unified communications system from Cisco. The component provides a scalable, distributable and highly available enterprise IP telephony call processing solution. sql database interface is one of...

SQL Injection Vulnerability in ThinkLC Classifieds Expand.php Page

ThinkLC Classified Information System is a local classified information system built on PHP+MYSQL development. A SQL injection vulnerability exists in the thinkLC Classified Information System expand.php page. The vulnerability is caused due to the system failing to effectively filter...

SQL injection vulnerability in YxtCMF frontend ShitiController.class.php page

YxtCMF Yi Xue Tang Online Learning System is an online learning platform system developed with thinkphp+bootstrap as the framework. A SQL injection vulnerability exists in the YxtCMF frontend ShitiController.class.php page. The vulnerability is due to the system failing to effectively filter...

ZOHO ManageEngine Applications Manager SQL Injection Vulnerability (CNVD-2017-37248)

ZOHO ManageEngine Applications Manager is a set of IT operation and maintenance management solutions of the United States ZhuoHao ZOHO company. The product has application performance management, fault management, report generation and SLA management and other functions. A SQL injection...

SQL Injection Vulnerability in Ming Enterprise Technology Website Construction System

Shanghai Ming Enterprise Information Technology Co., Ltd Ming Enterprise Technology is engaged in website construction, network marketing, domain name hosting and Internet application development. A SQL injection vulnerability exists in Ming Enterprise's website construction system. The...

CVE-2017-12302

A vulnerability in the Cisco Unified Communications Manager SQL database interface could allow an authenticated, remote attacker to impact the confidentiality of the system by executing arbitrary SQL queries, aka SQL Injection. The vulnerability is due to a lack of input validation on user-suppli...

SQL injection vulnerability in shownews.hb page of website building system of Jiangxi Huabang Media Co.

Jiangxi Huabang Media Co., Ltd. is a comprehensive IT company integrating enterprise informationization construction, network development and Internet marketing. There is a SQL injection vulnerability in the shownews.hb page of the website building system of Jiangxi Huabang Media Co. The...

SQL Injection Vulnerability in News.asp Page of Frontier Technology Website Building System

Zaozhuang Frontier Technology Co., Ltd. is a technology enterprise engaged in software technology services. A SQL injection vulnerability exists in the news.asp page of Frontier Technology's website construction system. An attacker can exploit this vulnerability to obtain sensitive information fr...

SQL Injection Vulnerability in auxblogcms 1.0.6

auxblogcms is a php personal blog system based on PHP+MySQL program. auxblogcms 1.0.6 suffers from a SQL injection vulnerability, which is caused due to the system failing to filter parameters effectively. An attacker can exploit this vulnerability to obtain sensitive database information...