17 matches found
EUVD-2018-21655
Shipping System CMS 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to bypass authentication by injecting SQL code through the username parameter. Attackers can submit malicious SQL payloads using boolean-based blind techniques in POST requests to the admin login...
CVE-2018-25183 Shipping System CMS 1.0 SQL Injection via admin login
Shipping System CMS 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to bypass authentication by injecting SQL code through the username parameter. Attackers can submit malicious SQL payloads using boolean-based blind techniques in POST requests to the admin login...
CVE-2018-25183
Shipping System CMS 1.0 contains an SQL injection vulnerability affecting the admin login flow. An unauthenticated attacker can bypass authentication by injecting SQL via the username parameter and using boolean-based blind payloads in POST requests to the admin login endpoint to authenticate wit...
CVE-2018-25183 Shipping System CMS 1.0 SQL Injection via admin login
Shipping System CMS 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to bypass authentication by injecting SQL code through the username parameter. Attackers can submit malicious SQL payloads using boolean-based blind techniques in POST requests to the admin login...
Wecodex Shipping System CMS SQL注入漏洞
Wecodex Shipping System CMS is a logistics content management system developed by Wecodex Corporation. Version 1.0 of the Wecodex Shipping System CMS has a SQL injection vulnerability. This vulnerability stems from insufficient validation of the username parameter input, which may lead to SQL...
PT-2026-28235
Shipping System CMS 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to bypass authentication by injecting SQL code through the username parameter. Attackers can submit malicious SQL payloads using boolean-based blind techniques in POST requests to the admin login...
Zibo Shining Network Technology Co., Ltd. ships 100cms with SQL injection vulnerability
Shipping 100cms is a virtual goods auto shipping system/article pay to read system, no need to manually manned, customers can buy online to automatically complete the transaction. There is a SQL injection vulnerability in Shipping 100cms by Zibo Shining Network Technology Co. Attackers can use th...
SQL Injection Vulnerability in Shipping 100 Virtual Goods Auto-Shipping System of Zibo Shining Network Technology Co. Ltd (CNVD-2021-34231)
Shipping 100 virtual goods automatic shipping system is a powerful virtual goods automatic shipping system. A SQL injection vulnerability exists in Ship100 Virtual Goods Auto Shipment System, which can be exploited by attackers to obtain sensitive information from the database...
SQL Injection Vulnerability in Shipping 100 Virtual Goods Autoship System T1
Shipping 100-Virtual Goods Auto-Shipping System is a powerful virtual goods automatic shipping system/article pay to read the system, without manual supervision, customers can buy online to automatically complete the transaction. There is a SQL injection vulnerability in T1 of Shipment100 Virtual...
SQL Injection Vulnerability in Shipping 100 Virtual Goods Auto Shipping System v1.1 build20210105
Shipping 100 Virtual Goods Autoship System is a virtual goods autoship system/article pay to read system. Shipping 100 Virtual Goods Auto Shipping System v1.1 build20210105 has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...
Shipping 100 Virtual Goods Auto Shipping System v1.1 build20210104 has XSS vulnerability
Shipping 100-Virtual Goods Autoship System is a virtual goods autoship system/article pay to read system. Shipping 100 Virtual Goods Auto Shipping System v1.1 build20210104 has an XSS vulnerability that can be exploited by an attacker to obtain user cookie information...
XSS Vulnerability in Shipping 100 Virtual Goods Autoship System (CNVD-2020-25886)
Shipping 100 Virtual Goods Autoship System is a virtual goods autoship system/article pay to read system. Shipping 100 Virtual Goods Autoship System has an XSS vulnerability that can be exploited by attackers to execute malicious scripts and obtain an administrator cookie...
Arbitrary File Deletion Vulnerability in Shipping 100 Virtual Goods Autoship System
Shipping 100 Virtual Goods Autoship System is a virtual goods autoship system/article pay to read system. Ship 100 Virtual Goods Autoship System has an arbitrary file deletion vulnerability that can be exploited by an attacker to delete arbitrary files...
SQL Injection Vulnerability in Shipping 100 System (CNVD-2020-10186)
Shipping 100 System is a virtual goods autoship system/article pay to read system. A SQL injection vulnerability exists in Shipment 100 System, which can be exploited by attackers to obtain sensitive information...
SQL Injection Vulnerability in Shipping 100 System (CNVD-2020-10185)
Shipping 100 System is a virtual goods autoship system/article pay to read system. A SQL injection vulnerability exists in Shipment 100 System, which can be exploited by attackers to obtain sensitive information...
SQL Injection Vulnerability in Shipping 100 System (CNVD-2020-10187)
Shipping 100 System is a virtual goods autoship system/article pay to read system. A SQL injection vulnerability exists in Shipment 100 System, which can be exploited by attackers to obtain sensitive information...
Shipping System CMS SQL Injection Vulnerability
Shipping System CMS is a shipping management system. Shipping System CMS suffers from a SQL injection vulnerability. An attacker can exploit this vulnerability to execute arbitrary SQL statements...