Simple Pizza Ordering System adding-exec.php File SQL Injection Vulnerability

Simple Pizza Ordering System is a simple pizza ordering system. Simple Pizza Ordering System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the parameter ingname in the file /adding-exec.php. An attacker can exploit this...

Code-Projects Food Distributor Site 注入漏洞

Code-Projects Food Distributor Site is a Code-Projects open source food distributor site. Code-Projects Food Distributor Site version 1.0 suffers from an injection vulnerability that originates from SQL injection due to incorrect manipulation of the parameters username/password in the file...

Online Hotel Reservation System messageexec.php File SQL Injection Vulnerability

Online Hotel Reservation System is a simple online hotel reservation system. Online Hotel Reservation System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally entered SQL statement in the parameter Name in the file /messageexec.php. The...

Car Rental System message_admin.php File SQL Injection Vulnerability

Car Rental System is a car rental system. Car Rental System suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in the messageadmin.php file's parameter Message. An attacker can use this vulnerability to execute illegal SQL commands...

Online Shoe Store contactus1.php File SQL Injection Vulnerability

Online Shoe Store is an online shoe store system. Online Shoe Store suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter Message in the file /contactus1.php. The vulnerability can be exploited by an attacker t...

WordPress plugin LifterLMS SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection...

bicycleSharingServer 注入漏洞

bicycleSharingServer is a bicycle sharing JavaWEB backend for huija individual developers in China. An injection vulnerability exists in bicycleSharingServer version 1.0, which originates from a mishandling of the selectAdminByNameLike function in the AdminController.java file, which could lead t...

Art Gallery Management System forgot-password.php File SQL Injection Vulnerability

Art Gallery Management System is an art gallery management system. Art Gallery Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter email in the file /admin/forgot-password.php. An attacker c...

Art Gallery Management System changepropic.php File SQL Injection Vulnerability

Art Gallery Management System is an art gallery management system. Art Gallery Management System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally-entered SQL statement in the parameter imageid in the file /admin/changepropic.php. An attacker...

WordPress plugin Amely SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection...

PHPGurukul Dairy Farm Shop Management System 安全漏洞

Dairy Farm Shop Management System is a PHP and MySQL based dairy farm management system . Dairy Farm Shop Management System suffers from a SQL injection vulnerability that stems from a lack of validation of externally entered SQL statements in manage-companies.php. No details of the vulnerability...

OpenNMS Horizon 安全漏洞

OpenNMS Horizon is an open source solution from OpenNMS, Inc. that helps you visualize and monitor everything on your local and remote networks. A security vulnerability exists in OpenNMS Horizon that stems from improper neutralization of special elements in SQL commands, which could lead to SQL...

CVE-2024-27685

SQL Injection vulnerability in Student Record system Using PHP and MySQL v.3.20 allows a remote attacker to obtain sensitive information via a crafted payload to the $cshortname, $cfullname, and $cdate variables...

SQL Injection Vulnerability in ERP System of Shenzhen Mingyuan Cloud Technology Co.

The ERP system is a comprehensive information management platform that integrates the functions of housing, customers, sales, finance and human resources. ERP system of Shenzhen Mingyuan Cloud Technology Co., Ltd. suffers from SQL injection vulnerability, which can be exploited by attackers to...

Code-Projects Inventory Management System 注入漏洞

Inventory Management System is an inventory management system. Inventory Management System suffers from a SQL injection vulnerability that originates from the lack of validation of externally entered SQL statements in the parameter brandStatus of file /phpaction/createBrand.php. An attacker can...

itsourcecode Employee Management System 注入漏洞

itsourcecode Employee Management System is itsourcecode open source employee management system. An injection vulnerability exists in itsourcecode Employee Management System version 1.0, which stems from improper handling of the parameter FirstName in the file /admin/editempprofile.php, which can...

The vulnerability of the customerview.php file in the tailoring management system allows a hacker to execute arbitrary SQL code.

The vulnerability of the customerview.php file in the tailoring management system is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker who operates remotely to execute arbitrary SQL code...

CVE-2025-49853

ControlID iDSecure On-premises versions 4.7.48.0 and prior are vulnerable to SQL injections which could allow an attacker to leak arbitrary information and insert arbitrary SQL syntax into SQL queries...

WordPress GG Bought Together for WooCommerce plugin <= 1.0.2 - SQL Injection Vulnerability

SQL Injection Vulnerability discovered by ch4r0n in WordPress Plugin GG Bought Together for WooCommerce versions = 1.0.2...

Control iD iDSecure On-premises 注入漏洞

Control iD iDSecure On-premises is an access control software from Control iD, a Brazilian company, used to manage personnel and vehicle access. A SQL injection vulnerability exists in Control iD iDSecure On-premises version 4.7.48.0 and prior versions, which originates from SQL injection and cou...