1135 matches found
CVE-2022-31982
Online Fire Reporting System v1.0 is vulnerable to SQL Injection via /ofrs/admin/?page=requests/viewrequest&id=...
CVE-2022-30836
Wedding Management System v1.0 is vulnerable to SQL Injection. via Wedding-Management/admin/select.php...
CVE-2022-30830
Wedding Management System v1.0 is vulnerable to SQL Injection via \admin\featureedit.php...
CVE-2022-30794
Online Ordering System v1.0 by oretnom23 is vulnerable to SQL Injection via admin/editproductetails.php...
Car Rental Management System SQL注入漏洞
Car Rental Management System is a car rental management system. SQL injection vulnerability exists in Car Rental Management System, which can be exploited by attackers to view, add, modify or delete information in the back-end database...
Online Car Wash Booking System SQL注入漏洞
Online Car Wash Booking System is an online car wash booking system from Carlo Montero's personal developer. version v1.0 of Online Car Wash Booking System is vulnerable to SQL injection, which originates from /ocwbs/classes/Master.php?f =deleteservice page lacks validation of external input SQL...
CVE-2022-28531
Sourcecodester Covid-19 Directory on Vaccination System1.0 is vulnerable to SQL Injection via the admin/login.php txtusername aka Username field...
CVE-2022-30886
School Dormitory Management System v1.0 was discovered to contain a SQL injection vulnerability via the month parameter at /dms/admin/reports/dailycollectionreport.php...
CVE-2022-29304
Online Sports Complex Booking System 1.0 is vulnerable to SQL Injection via /classes/master.php?f=delete Facility...
PT-2022-19757 · Unknown · Online Sports Complex Booking System
Name of the Vulnerable Software and Affected Versions: Online Sports Complex Booking System version 1.0 Description: The issue concerns SQL Injection via the "/scbs/classes/Users.php?f=save client" endpoint. This allows for potential manipulation of database queries, which could lead to...
CVE-2022-30399
Merchandise Online Store v1.0 is vulnerable to SQL Injection via /vloggersmerch/admin/?page=maintenance/managecategory&id=...
CVE-2022-30372
Air Cargo Management System 1.0 is vulnerable to SQL Injection via /acms/classes/Master.php?f=deletecargo...
CVE-2022-30001
Insurance Management System 1.0 is vulnerable to SQL Injection via /insurance/editAgent.php?agentid=...
CVE-2022-29741
Money Transfer Management System 1.0 is vulnerable to SQL Injection via \mtms\classes\Master.php?f=deletefee...
CVE-2022-29999
Insurance Management System 1.0 is vulnerable to SQL Injection via /insurance/editClient.php?clientid=...
CVE-2022-0814
The Ubigeo de Perú para Woocommerce WordPress plugin before 3.6.4 does not properly sanitise and escape some parameters before using them in SQL statements via various AJAX actions, some of which are available to unauthenticated users, leading to SQL Injections...
CVE-2022-29535
Zoho ManageEngine OPManager through 125588 allows SQL Injection via a few default reports...
mingyuefusu Library Management System SQL注入漏洞
mingyuefusu Library Management System is a library management system. A security vulnerability exists in mingyuefusu Library Management System, which stems from src/javabean/JDBCBean.java not properly pre-processing SQL data...
CVE-2022-28032
AtomCMS 2.0 is vulnerable to SQL Injection via Atom.CMSadminajaxpages.php...
Vulnerabilities fixed in Sophos SG UTM
Vulnerabilities have been fixed in Sophos SG UTM. The vulnerabilities allow a malicious person to launch attacks that lead to the following categories of damage: Denial-of-Service DoS SQL Injection Access to sensitive data Sophos has fixed the vulnerabilities in SG UTM version 9.710. More...