160 matches found
itsourcecode Farm Management System SQL注入漏洞
itsourcecode Farm Management System is an itsourcecode open source farm management system. SQL injection vulnerability exists in itsourcecode Farm Management System version 1.0, which originates from SQL injection of parameters pigno/weight/arrived/breed/remark/status...
CVE-2024-36597
Aegon Life v1.0 was discovered to contain a SQL injection vulnerability via the clientid parameter at clientStatus.php...
CVE-2024-29400
An issue was discovered in RuoYi v4.5.1, allows attackers to obtain sensitive information via the status parameter...
RuoYi 安全漏洞
RuoYi is a backend management system for individual developers of RuoYi China. A security vulnerability exists in RuoYi v4.5.1. An attacker exploited the vulnerability to obtain sensitive information via the status parameter...
CVE-2024-29400
An issue was discovered in RuoYi v4.5.1, allows attackers to obtain sensitive information via the status parameter...
CVE-2024-29400
An issue was discovered in RuoYi v4.5.1, allows attackers to obtain sensitive information via the status parameter...
PT-2024-22881 · Ruoyi · Ruoyi
Name of the Vulnerable Software and Affected Versions: RuoYi version 4.5.1 Description: An issue was discovered that allows attackers to obtain sensitive information via the status parameter. Recommendations: For RuoYi version 4.5.1, consider restricting access to the status parameter to minimize...
WordPress Plugin WP ERP 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
Simple Task List 1.0 - 'status' SQLi
Exploit Title: Simple Task List 1.0 - 'status' SQLi Date: 2023-11-15 Exploit Author: Ersin Erenler Vendor Homepage: https://code-projects.org/simple-task-list-in-php-with-source-code Software Link: https://download-media.code-projects.org/2020/12/SimpleTaskListInPHPWithSourceCode.zip Version: 1.0...
CVE-2024-1320
The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'offlinestatus' parameter in all versions up to, and including, 3.4.3 due to insufficient input sanitization and output escaping. This makes it possible for...
PT-2024-17940 · WordPress · Eventprime – Events Calendar
Name of the Vulnerable Software and Affected Versions: The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress versions up to, and including, 3.4.3 Description: The issue is related to Stored Cross-Site Scripting via the offline status parameter due to insufficient input...
CVE-2024-25428
SQL Injection vulnerability in MRCMS v3.1.2 allows attackers to run arbitrary system commands via the status parameter...
MRCMS Security Vulnerabilities
MRCMS is a content management system by markers personal developer. A security vulnerability exists in MRCMS v3.1.2. The vulnerability can be exploited to execute arbitrary system commands via the status parameter...
CVE-2024-25428
SQL Injection vulnerability in MRCMS v3.1.2 allows attackers to run arbitrary system commands via the status parameter...
PT-2024-20937 · Mrcms · Mrcms
Name of the Vulnerable Software and Affected Versions: MRCMS version 3.1.2 Description: The issue allows attackers to run arbitrary system commands via the status parameter, potentially leading to unauthorized access and control. Recommendations: For MRCMS version 3.1.2, avoid using the status...
CVE-2023-46023
SQL injection vulnerability in addTask.php in Code-Projects Simple Task List 1.0 allows attackers to obtain sensitive information via the 'status' parameter...
CVE-2023-46023
SQL injection vulnerability in addTask.php in Code-Projects Simple Task List 1.0 allows attackers to obtain sensitive information via the 'status' parameter...
PT-2023-29805 · Unknown · Code-Projects Simple Task List
Name of the Vulnerable Software and Affected Versions: Code-Projects Simple Task List version 1.0 Description: A SQL injection issue allows attackers to obtain sensitive information by manipulating the status parameter in the "addTask.php" file. Recommendations: For Code-Projects Simple Task List...
Code-Projects Simple Task List Security Vulnerability
Code-Projects Simple Task List is Code-Projects open source a simple task list system . Code-Projects Simple Task List version 1.0 has a security vulnerability , the vulnerability stems from allowing an attacker to obtain sensitive information through the status parameter in addTask.php...
CVE-2023-45334
Online Food Ordering System v1.0 is vulnerable to multiple Unauthenticated SQL Injection vulnerabilities. The 'status' parameter of the routers/edit-orders.php resource does not validate the characters received and they are sent unfiltered to the database...