Sql injection

A vulnerability classified as problematic has been found in web-cyradm. This affects an unknown part of the file search.php. The manipulation of the argument searchstring leads to sql injection. It is recommended to apply a patch to fix this issue. The identifier VDB-217449 was assigned to this...

CVE-2007-10001

CVE-2007-10001 is associated with web-cyradm. Connected sources confirm a SQL injection vulnerability in an unknown part of search.php caused by unsafely handling the searchstring parameter. The issue affects web-cyradm and is mitigated by applying a patch (as noted in multiple references). Pract...

CVE-2007-10001 web-cyradm search.php sql injection

A vulnerability classified as problematic has been found in web-cyradm. This affects an unknown part of the file search.php. The manipulation of the argument searchstring leads to sql injection. It is recommended to apply a patch to fix this issue. The identifier VDB-217449 was assigned to this...

CVE-2007-10001 web-cyradm search.php sql injection

A vulnerability classified as problematic has been found in web-cyradm. This affects an unknown part of the file search.php. The manipulation of the argument searchstring leads to sql injection. It is recommended to apply a patch to fix this issue. The identifier VDB-217449 was assigned to this...

web-cyradm SQL注入漏洞

web-cyradm is web-cyradm open source a web-based software. web-cyradm has a SQL injection vulnerability that stems from a problem in the unknown section of the file search.php, where manipulation of the parameter searchstring can lead to sql injection...

PT-2023-9860 · Unknown · Web-Cyradm

Name of the Vulnerable Software and Affected Versions: web-cyradm affected versions not specified Description: A problematic issue has been found in web-cyradm, affecting the file search.php. The manipulation of the searchstring argument leads to sql injection. Recommendations: Apply a patch to f...

CVE-2022-43369

AutoTaxi Stand Management System v1.0 was discovered to contain a cross-site scripting XSS vulnerability via the component search.php...

Cross site scripting

AutoTaxi Stand Management System v1.0 was discovered to contain a cross-site scripting XSS vulnerability via the component search.php...

CVE-2022-43369

AutoTaxi Stand Management System v1.0 was discovered to contain a cross-site scripting XSS vulnerability via the component search.php...

CVE-2022-43369

AutoTaxi Stand Management System v1.0 was discovered to contain a cross-site scripting XSS vulnerability via the component search.php...

CVE-2022-43369

CVE-2022-43369 affects AutoTaxi Stand Management System v1.0, with a cross-site scripting (XSS) vulnerability in the search.php component. The issue is described across multiple sources as a client-side/script injection risk in the search functionality, contributing to a CVSS v3.1 base score of 6...

Cross-site Scripting (XSS)

microweber/microweber is vulnerable to cross-site scripting. The vulnerability exists due to the vulnerable microweber-templates/bootstrap5, microweber-templates/new-world and microweber-templates/shopmag dependencies used in composer.json, allowing an attacker to inject and execute malicious...

CVE-2022-36715

Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter at /admin/search.php...

CVE-2022-36715

Library Management System v1.0 was discovered to contain a SQL injection vulnerability via the name parameter at /admin/search.php...

Simple E-Learning System SQL Injection Vulnerability (CNVD-2023-11439)

Simple E-Learning System is a simple e-learning system from Carlo Montero's personal developer. simple E-Learning System is vulnerable to SQL injection due to a lack of validation of external input SQL statements in the search.php parameter searchPost. . An attacker could use this vulnerability t...

CVE-2022-2698

A vulnerability was found in SourceCodester Simple E-Learning System. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file search.php. The manipulation of the argument searchPost leads to sql injection. The attack can be launched remotely. The...

CVE-2017-20129

A vulnerability was found in LogoStore. It has been classified as critical. Affected is an unknown function of the file /LogoStore/search.php. The manipulation of the argument query with the input test' UNION ALL SELECT...

Sql injection

A vulnerability was found in LogoStore. It has been classified as critical. Affected is an unknown function of the file /LogoStore/search.php. The manipulation of the argument query with the input test' UNION ALL SELECT...

LogoStore SQL注入漏洞

LogoStore is an online store from LogoStore Inc. in the United States. A security vulnerability exists in LogoStore that stems from an unknown function in the affected file /LogoStore/search.php. The function can lead to SQL injection, potentially launching an attack from a remote location. It is...

atoms183 CMS SQL Injection Vulnerability

atoms183 CMS is a content management system by the individual developer of Дмитрий Глазвин. A SQL injection vulnerability exists in atoms183 CMS version 1.0, which can be exploited by an attacker to execute arbitrary commands on search.php via the Name, Fname, and ID parameters...