Sanitization Management System SQL注入漏洞

Sanitization Management System is a sanitization management system by Carlo Montero Personal Developer. A security vulnerability exists in Sanitization Management System v1.0, which stems from its /php-sms/admin/?page=services/viewservice&id= component that allows attackers to implement SQL...

CVE-2022-44277

Sanitization Management System v1.0 is vulnerable to SQL Injection via /php-sms/classes/Master.php?f=deleteproduct...

Church Management System SQL注入漏洞

Church Management System is a church management system. A security vulnerability exists in Church Management System v1.0, which stems from the id parameter of its /admin/editmembers.php component that allows an attacker to implement SQL injection...

WordPress plugin WP User Merger SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerability exist...

PT-2022-24425 · WordPress · Wp User Merger

Name of the Vulnerable Software and Affected Versions: WP User Merger WordPress plugin versions prior to 1.5.3 Description: The issue arises from the plugin's failure to properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection. This can be exploited ...

JeecgBoot Jeecg-Boot SQL注入漏洞

Jeecg-Boot is a code generator based low-code platform from the JeecgBoot community. JeecgBoot A security vulnerability exists in Jeecg-Boot version v3.4.3, which stems from the discovery of a contained SQL injection vulnerability via component /sys/duplicate/check...

PT-2022-27119 · Unknown · Apartment Visitor Management System

Name of the Vulnerable Software and Affected Versions: Apartment Visitor Management System version 1.0 Description: The issue is related to SQL Injection, which can be exploited via the /avms/index.php endpoint. There is no information provided about the estimated number of potentially affected...

CVE-2022-44414

Automotive Shop Management System v1.0 is vulnerable to SQL Injection via /asms/admin/services/manageservice.php?id=...

WordPress Plugin Search Logger SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A SQL injection vulnerability exists in...

Online Pet Shop We App SQL注入漏洞

Online Pet Shop We App is an online pet store web application by Carlo Montero Personal Developer. A security vulnerability exists in version 1.0 of Online Pet Shop We App, which stems from an SQL injection issue in the id parameter of the /admin/?page=orders/vieworder location...

CVE-2022-40828

B.C. Institute of Technology CodeIgniter =3.1.13 is vulnerable to SQL Injection via system\database\DBquerybuilder.php orwherenotin function. Note: Multiple third parties have disputed this as not a valid vulnerability...

CVE-2022-42249

Simple Cold Storage Management System v1.0 is vulnerable to SQL injection via /csms/admin/storages/viewstorage.php?id=...

CVE-2022-42304

An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products. The NetBackup Primary server is vulnerable to a SQL Injection attack affecting idm, nbars, and SLP manager code...

CVE-2022-42304

An issue was discovered in Veritas NetBackup through 10.0 and related Veritas products. The NetBackup Primary server is vulnerable to a SQL Injection attack affecting idm, nbars, and SLP manager code...

CVE-2022-40943

Dairy Farm Shop Management System 1.0 is vulnerable to SQL Injection via bwdate-report-ds.php file...

CVE-2022-40944

Dairy Farm Shop Management System 1.0 is vulnerable to SQL Injection via sales-report-ds.php file...

CVE-2022-36961

A vulnerable component of Orion Platform was vulnerable to SQL Injection, an authenticated attacker could leverage this for privilege escalation or remote code execution...

Exploit for CVE-2022-37210

CVE-2022-37210 CVE-2022-37210 POC Suggested description...

Hospital Management System SQL注入漏洞

The Hospital Management System HMS is a computer system that helps manage healthcare-related information and helps healthcare providers do their jobs effectively. A SQL injection vulnerability exists in Hospital Management System v1.0, which originates from a security issue with the Username and...

Sophos Firewall SQL注入漏洞

Sophos Firewall is a firewall from Sophos UK. A security vulnerability exists in versions prior to Sophos Firewall v18.5 MR4 18.5.4, which can be exploited by an attacker to escalate privileges from Administrator to Super Administrator...