8195 matches found
Joomla! OpenCart Component SQL Injection Vulnerability
Joomla! is a content management system which is quite famous in foreign countries.OpenCart is a system component for product management in Joomla! A SQL injection vulnerability exists in the productid parameter of the Joomla! OpenCart index.php page, which can be exploited by attackers to access ...
Omegle Clone SQL Injection Vulnerability
Omegle Clone is a communication software script. An SQL injection vulnerability exists in the Omegle Clone parameter, which could allow a remote, unauthenticated attacker to gain access to sensitive information via this vulnerability...
Secure Download Links 'dc' Parameter SQL Injection Vulnerability
Secure Download Links is an application that provides secure downloads. A SQL injection vulnerability exists in the 'dc' parameter of Secure Download Links, which allows remote, unauthenticated attackers to obtain sensitive information...
Joomla Vik Rent Car component 'caropt' parameter SQL injection vulnerability
Joomla is a software system developed using the PHP language coupled with a MySQL database, and can be implemented on various platforms such as Linux, Windows, MacOSX, and so on. A SQL injection vulnerability exists in the 'caropt' parameter of the Joomla Vik Rent Car component. An attacker can...
SQL Injection Vulnerability in KenCMS V1.1 Enterprise Member Experience System end_time Parameter
KenCMS is a content management system. A SQL injection vulnerability exists in the KenCMS V1.1 Enterprise Member Experience system. The lack of filtering of the 'endtime' parameter allows an attacker to exploit the vulnerability to obtain sensitive database information...
WordPress Mail Masta plugin SQL injection vulnerability (CNVD-2017-02634)
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.Mail Masta aka mail-masta is one of the email plug-ins. WordPress Mail Masta plugin version 1.0 in...
WordPress Mail Masta plugin SQL injection vulnerability (CNVD-2017-02636)
WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports personal blog sites set up on PHP and MySQL servers.Mail Masta aka mail-masta is one of the email plug-ins. WordPress Mail Masta plugin version 1.0 in...
CVE-2016-8940
IBM Tivoli Storage Manager IBM Spectrum Protect 6.1, 6.2, 6.3, and 7.1 does not perform sufficient authority checking on SQL queries. As a result, an attacker is able to submit SQL queries that access database tables that are not intended for access or use by administrators. The access of these...
CVE-2016-9992
IBM Kenexa LCMS Premier on Cloud 9.0, and 10.0.0 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM Reference : 1992067...
Joomla com_sgpprojects Component SQL Injection Vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the Joomla comsgpprojects component. An attacker can exploit the vulnerability to access or modify database data...
Joomla com_wisroyq component 'Pid' parameter SQL injection vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the 'Pid' parameter of the Joomla comwisroyq component. An attacker can exploit the vulnerability to access or modify database data...
Joomla UserExtranet Component SQL Injection Vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the Joomla UserExtranet component. An attacker can exploit the vulnerability to access or modify database data...
CVE-2016-8998
IBM Tivoli Storage Manager Server 7.1 could allow an authenticated user with TSM administrator privileges to cause a buffer overflow using a specially crafted SQL query and execute arbitrary code on the server. IBM Reference : 1998747...
EMC Documentum Content Server DQL Injection Vulnerability
EMC Documentum Content Server is a content management service system from EMC. A DQL injection vulnerability exists in EMC Documentum Content Server because the program fails to properly filter user-submitted input. A remote attacker can exploit the vulnerability by sending a specially crafted...
Joomla djcatalog2 Component SQL Injection Vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the Joomla djcatalog2 component. An attacker can exploit the vulnerability to access or modify database data...
Joomla com_djcatalog2 component 'cid' parameter SQL injection vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the 'cid' parameter of the Joomla comdjcatalog2 component. An attacker can exploit the vulnerability to access or modify database data...
SQL Injection Vulnerability in Ocean CMS tid Parameter
Ocean CMS is an open source website builder. An SQL injection vulnerability exists in the admintopicvod.php page of Ocean CMS 6.46 utf-8 official. The lack of filtering of the 'tid' parameter allows an attacker to exploit the vulnerability to obtain sensitive information about the database...
UBUNTU-CVE-2016-4861
The 1 order and 2 group methods in ZendDbSelect in the Zend Framework before 1.12.20 might allow remote attackers to conduct SQL injection attacks by leveraging failure to remove comments from an SQL statement before validation...
SQL command execution vulnerability in the sysId parameter of Wyspeed V2 video conferencing system
Vizz V2 Video Conferencing System is a video conferencing system. A SQL command execution vulnerability exists in the sysId parameter of the Vizz V2 video conferencing system. It allows an attacker to remotely write a shell and gain server privileges...
Joomla JE Quiz Component SQL Injection Vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the Joomla JE Quiz component, which can be exploited by attackers to access or modify database data...