CVE-2021-27672

SQL Injection in the "adminboxes.ajax.php" component of Tribal Systems Zenario CMS v8.8.52729 allows remote attackers to obtain sesnitive database information by injecting SQL commands into the "cID" parameter when creating a new HTML component...

EUVD-2020-14936

Malware in sbrugna...

EUVD-2008-1880

Malware in sbrugna...

EUVD-2019-3291

Malware in sbrugna...

CVE-2025-54060

WeGIA is an open source web manager with a focus on the Portuguese language and charitable institutions. A SQL Injection vulnerability was identified in versions prior to 3.4.6 in the idatendidofamiliares parameter of the /html/funcionario/dependenteeditarInfoPessoal.php endpoint. This...

SQL Injection Vulnerability in Multimedia Integrated Service Display System of Beijing Shenzhou Vision Han Technology Co., Ltd (CNVD-2025-18623)

Ltd. is a deep-rooted enterprise in the field of visualization. A SQL injection vulnerability exists in the multimedia integrated business display system of Beijing Divine Vision Han Technology Co. Ltd, which can be exploited by attackers to obtain sensitive information from the database...

CVE-2025-52474 WeGIA SQL Injection Vulnerability in id Parameter on control.php Endpoint

WeGIA is a web manager for charitable institutions. Prior to version 3.4.2, a SQL Injection vulnerability was identified in the id parameter of the /WeGIA/controle/control.php endpoint. This vulnerability allows attacker to manipulate SQL queries and access sensitive database information, such as...

Shenzhen Lanling Software Co., Ltd. business operation cloud has sql injection vulnerability

Shenzhen BlueLine Software Co., Ltd. is a well-known large platform OA service provider and a leading provider of intelligent knowledge and "AI+Collaboration" solutions in China. There is a sql injection vulnerability in the business operation cloud of Shenzhen BlueLine Software Co., Ltd, which c...

CVE-2020-28702

A SQL injection vulnerability in TopicMapper.xml of PybbsCMS v5.2.1 allows attackers to access sensitive database information...

CVE-2020-20583

A SQL injection vulnerability in /question.php of LJCMS Version v4.3.R60321 allows attackers to obtain sensitive database information...

CVE-2020-22122

A SQL injection vulnerability in /oa.php?c=Staff=read of Find a Place LJCMS v 1.3 allows attackers to access sensitive database information via a crafted POST request...

CVE-2020-29147

A SQL injection vulnerability in wycontrolls/wysidevisitor.php of Wayang-CMS v1.0 allows attackers to obtain sensitive database information...

CVE-2020-20469

White Shark System WSS 1.3.2 has a SQL injection vulnerability. The vulnerability stems from the logedit.php files failing to filter the csatouser parameter, remote attackers can exploit the vulnerability to obtain database sensitive information...

CVE-2019-11621

doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/requests/user/configurationRequest.php when action=network. A remote background administrator privilege user or a user with permission to manage network configuration could exploit the vulnerability to obtain database sensitive...

CVE-2019-11625

doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/requests/user/emailingRequest.php. A remote background administrator privilege user or a user with permission to manage emailing could exploit the vulnerability to obtain database sensitive information...

CVE-2019-11622

doorGets 7.0 has a SQL injection vulnerability in /doorgets/app/requests/user/modulecategoryRequest.php. A remote background administrator privilege user or a user with permission to manage modulecategory could exploit the vulnerability to obtain database sensitive information via...

SQL Injection Vulnerability in U8 Cloud of UFIDA Network Technology Co.

U8 Cloud is a digital platform for enterprises to go to the cloud, integrating transactions, services and management into a total ERP solution. A SQL injection vulnerability exists in UFIDA U8 Cloud, which can be exploited by attackers to gain access to sensitive database information...

SQL Injection Vulnerability in U8Cloud of UFIDA Network Technology Co.

U8cloud is a new-generation cloud ERP launched by UFIDA, which mainly focuses on growing and innovative enterprises and provides enterprise-level cloud ERP total solutions. A SQL injection vulnerability exists in UFIDA U8Cloud, which can be exploited by attackers to obtain sensitive database...

SQL Injection Vulnerability in Salary Inquiry System of Wuhan Evonik Software Co.

Wuhan Evonik Software Co., Ltd. specializes in AutoCAD secondary development, Office secondary development, information management systems, etc., is committed to creating efficient CAD graphics and Office productivity tools. Wuhan Evonik Software Co., Ltd. salary inquiry system SQL injection...

SQL Injection Vulnerability in UFIDA U8 CRM at UFIDA Network Technology Co.

UFIDA U8 CRM is a customer relationship management solution from UFIDA. A SQL injection vulnerability exists in UFIDA U8 CRM, which can be exploited by attackers to obtain sensitive information from the database...