CVE-2020-3937

SQL Injection in SysJust Syuan-Gu-Da-Shih, versions before 20191223, allowing attackers to perform unwanted SQL queries and access arbitrary file in the database...

SQL Injection Vulnerability in 51 Micro Voting System

51 Micro Voting System is a platform system that provides customers with online voting services through the Internet. There is a SQL injection vulnerability in 51MicroVoting System, which can be exploited by attackers to obtain sensitive information in the database...

Daqing JiuJiu Network Technology Co., Ltd. website building system has SQL injection vulnerability

Daqing JiuJiu Network Technology Co., Ltd. is a technical service enterprise in the whole network marketing, enterprise e-commerce, value-added telecommunication business; network technology services; computer software development, sales and services, computer system services, computer repair, da...

SQL injection vulnerability in the background cm***_de***_ed***.php page of VANOC enterprise website management system.

Vanno enterprise website management system is an asp + access for the development of asp enterprise website source code. A SQL injection vulnerability exists in the backend cmdeed.php page of Vanno's enterprise website management system. Attackers can use this vulnerability to obtain sensitive...

Pimcore SQL Injection Vulnerability (CNVD-2019-42564)

Pimcore is Austria Pimcore company's set of open source for creating and managing Web applications Web content management platform. The platform integrates Web content management, e-commerce framework and product information management applications. A SQL injection vulnerability exists in version...

SQL Injection Vulnerability in opensns Backend

OpenSNS is a comprehensive social software developed by Thinking Sky. A SQL injection vulnerability exists in the opensns backend, which can be exploited by attackers to obtain sensitive information from the database...

SQL Injection Vulnerability in Super CMS da***.ma***.php

Super CMS content management system in order to solve the problem of website optimization and development of a set of products, it is an efficient open source content management system, the product is based on PHP + MYSQL architecture, can run on Windows, Linux, MacOSX, Solaris and other various...

CVE-2019-2211

In createProjectionMapForQuery of TvProvider.java, there is possible SQL injection. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-8.0 Android-8.1 Android-9...

SQL Injection Vulnerability in ZZCMS Frontend

ZZCMS is a content management system for Merchants Network. A SQL injection vulnerability exists in the frontend of ZZCMS. An attacker can exploit this vulnerability to obtain sensitive information from the database...

SQL Injection Vulnerability in the i*** Parameters of Thunderwind Movie CMS Mo***.php Page

Thunderwind CMS is a video-on-demand system developed using Thinkphp framework + Mysql to ensure the stability and efficiency of the program. Thunderwind Movie CMS Mo.php page i parameters exist SQL injection vulnerability, attackers can use the vulnerability to obtain database sensitive...

YouPHPTube 'id' Parameter SQL Injection Vulnerability

YouPHPTube is a PHP-based video website system. A SQL injection vulnerability exists in the 'id' parameter of the /plugin/ADServer/view/campaignsVideos.json file in YouPHPTube version 7.6. The vulnerability stems from a lack of validation of externally entered SQL statements in database-based...

WordPress pretty-link plugin SQL injection vulnerability

WordPress is the WordPress Foundation's set of blogs using PHP language development guest platform. The platform supports setting up personal blog sites on PHP and MySQL servers. pretty-link is a plugin for adding hyperlinks to web pages. WordPress pretty-link plugin version 1.6.8 before the...

SQL Injection Vulnerability in Air Quality System Publishing System

Zhuhai Goling Information Technology Co., Ltd. is a high-tech enterprise engaged in research and development of core technology of information network, production of professional equipment and network application service. An SQL injection vulnerability exists in the Air Quality System Publishing...

SQL injection vulnerability in the co***.cl***.php file of the Seven Bears library system

Seven bears library system a similar Baidu library online document preview, selling system. A SQL injection vulnerability exists in the co.cl.php file. An attacker can exploit the vulnerability to obtain sensitive information from the database...

ShopsN open source mall system Go***::cl*** file with SQL injection vulnerabilities

ShopsN open source mall system is a product of Shanghai Yiso Network Technology Co., Ltd. an enterprise-class commercial standard full-featured allow free commercial use of open source online store full network system . ShopsN open source mall system Go::cl file SQL injection vulnerability ,...

Yantai Cloud Pulse Network CMS website building system has SQL injection vulnerability

Yantai Cloud Pulse Network Technology Co., Ltd. is a professional website construction and search engine marketing services provider. Dedicated to small and medium-sized enterprises network marketing services, and website construction, enterprise version of the PC website construction, three-in-o...

WordPress Relevanssi Premium Plugin SQL Injection Vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A SQL injection vulnerability exists in WordPress Relevanssi Premium plugin versions prior to 1.14.6.1. The...

S-CM e-commerce system aj***.php page P_sort parameter SQL injection vulnerability

S-CMS e-commerce system is an e-commerce software. S-CM e-commerce system aj.php page Psort parameter SQL injection vulnerability, an attacker can use the vulnerability to obtain sensitive information...

SQL Injection Vulnerability in FlameCMS

FlameCMS lightweight modular front-end framework for developing fast, powerful web interfaces. FlameCMS suffers from a SQL injection vulnerability that can be exploited by attackers to obtain database information...

S-CMS enterprise website builder system backend P_br*** parameter exists SQL injection vulnerability

S-CMS enterprise station building system is Zibo Shining Network Technology Co., Ltd. developed a specialized enterprise station building solutions for the product. There is a SQL injection vulnerability in the Pbr parameter in the background of S-CMS enterprise website building system. Attackers...