PHPGurukul Teachers Record Management System 安全漏洞

Teachers Record Management System is a teacher record management system. Teachers Record Management System is vulnerable to a SQL injection vulnerability that stems from the presence of a SQL injection vulnerability in the add-teacher.php file via a cell phone number or email parameter. No detail...

EsafeNet CDG SQL注入漏洞

EsafeNet CDG is a document security management system from EsafeNet China. A SQL injection vulnerability exists in ESAFENET CDG. An attacker can exploit this vulnerability to perform SQL injection attacks...

The vulnerability in the web interface of the Cisco Secure Firewall Management Center (formerly known as Cisco Firepower Management Center) relates to the lack of protective measures for the SQL query structure, allowing an attacker to execute arbitrary code.

The vulnerability in the web interface of the Cisco Secure Firewall Management Center formerly known as Cisco Firepower Management Center relates to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remote...

Codezips Pet Shop Management System SQL注入漏洞

Codezips Pet Shop Management System is an open source pet store management system from Codezips. A SQL injection vulnerability exists in Codezips Pet Shop Management System version 1.0, which originates from an SQL injection in the parameter id...

SAS Studio 安全漏洞

SAS Studio is a Web browser-based programming environment from SAS. A security vulnerability exists in SAS Studio version 9.4. A remote attacker can exploit the vulnerability to execute arbitrary SQL commands via a POST body request...

The vulnerability of the listExtensions method implementation in the VMware Hybrid Cloud Extension (HCX) migration software allows a attacker to execute arbitrary code.

The vulnerability of the listExtensions method implementation in the VMware Hybrid Cloud Extension HCX migration software relates to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows an attacker to execute arbitrary code using a specially created SQ...

CVE-2024-50491

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Micah Blu RSVP ME allows SQL Injection.This issue affects RSVP ME: from n/a through 1.9.9...

LyLme Spage 安全漏洞

LyLme Spage Six Zero navigation page is China Six Zero LyLme open source a navigation page . Dedicated to simple and efficient advertising-free Internet navigation and search portal , support for background links , custom search engine , precipitation of the most valuable links , no commercial...

MRCMS 安全漏洞

MRCMS is a content management system by the individual developer of marker. A security vulnerability exists in MRCMS version 3.1.2, which originates from the RID parameter in /admin/article/delete.do contains a SQL injection vulnerability...

Sourceforge MRBS 安全漏洞

Sourceforge MRBS is a Sourceforge open source online meeting room management system. A security vulnerability exists in Sourceforge MRBS version 1.5.0, which originates from a SQL injection vulnerability in the editentryhandler.php file...

Genians Genian NAC 安全漏洞

Genians Genian NAC is a network security and access control software from Genians Korea. It helps organizations identify IP-enabled devices, manage vulnerabilities and check device configurations to protect network access environments. A security vulnerability exists in Genians Genian NAC, which...

Online Time Table Generator SQL注入漏洞

Online Time Table Generator is an online time table generator by Yugesh Verma Personal Developer. A SQL injection vulnerability exists in Online Time Table Generator version 1.0, which stems from the parameter c in the file /timetable/admin/admindashboard.php?info=addcourse that can lead to SQL...

Petrol Pump Management Software SQL注入漏洞

Petrol Pump Management Software is a gasoline pump management software by mayurik individual developer. A SQL injection vulnerability exists in Petrol Pump Management Software version 1.0, which originates from a SQL injection vulnerability contained in the id parameter of the...

Code-Projects Blood Bank Management System SQL注入漏洞

Code-Projects Blood Bank Management System is a Code-Projects open source blood bank management system. A SQL injection vulnerability exists in Code-Projects Blood Bank Management System version 1.0, which originates from an SQL injection vulnerability in the search parameter of the /abs.php file...

Code-Projects Blood Bank Management System SQL注入漏洞

Code-Projects Blood Bank Management System is a Code-Projects open source blood bank management system. A SQL injection vulnerability exists in Code-Projects Blood Bank Management System version 1.0, which originates from an SQL injection vulnerability in the reqid parameter of the /file/accept.p...

SQL Injection

Overview Affected versions of this package are vulnerable to SQL Injection through list method in curd\controller\Table.php file. An attacker can manipulate SQL queries and access or modify data in the database. Remediation There is no fixed version for funadmin/funadmin. References - GitHub Issu...

SQL Injection

Overview Affected versions of this package are vulnerable to SQL Injection due to improper input sanitization via the editfile method in \controller\Index.php file . An attacker can execute arbitrary SQL commands by injecting malicious SQL code into the input parameters. Remediation There is no...

FunAdmin 安全漏洞

FunAdmin is FunAdmin open source a lightweight and high-color backend development system based on ThinkPHP6+Layui development. A security vulnerability exists in FunAdmin version 5.0.2, which originates from an SQL injection vulnerability in /curd/table/list...

EsafeNet CDG SQL注入漏洞

EsafeNet CDG is a document security management system from EsafeNet. A SQL injection vulnerability exists in EsafeNet CDG version 5, which stems from an incorrect manipulation of the parameter id that can lead to sql injection...

Codezips Sales Management System SQL注入漏洞

Codezips Sales Management System is a Codezips open source sales management system. A SQL injection vulnerability exists in Codezips Sales Management System version 1.0, which is caused by improper handling of the refno parameter in the /addcustind.php file...