5735 matches found
EsafeNet CDG SQL注入漏洞
EsafeNet CDG is a document security management system from EsafeNet. EsafeNet CDG suffers from a SQL injection vulnerability, which stems from incorrect manipulation of the parameters id and frontId that can lead to sql injection...
EsafeNet CDG SQL注入漏洞
EsafeNet CDG is a document security management system from EsafeNet. EsafeNet CDG suffers from a SQL injection vulnerability, which stems from a misuse of the servername parameter that can lead to sql injection...
PT-2024-16056 · Code Projects · Pharmacy Management System
Name of the Vulnerable Software and Affected Versions: code-projects Pharmacy Management System version 1.0 Description: A critical issue affects the processing of the file "/manage medicine.php?action=delete". The manipulation of the id argument leads to SQL injection. The attack can be initiate...
Hikvision HikCentral Professional 安全漏洞
Hikvision HikCentral Professional is a professional version of Hikvision's AI Cloud-based application management intelligence platform for edge domains. A security vulnerability exists in Hikvision HikCentral Professional versions V2.0.0 through V2.6.0, which is rooted in a susceptible SQL...
The vulnerability of the sinv_check_exp component in the Virtuoso-opensource web application development platform allows a attacker to trigger a service failure.
The vulnerability of the sinvcheckexp component in the Virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to trigger a service failure using specially created SQL...
The vulnerability of the dfe_qexp_list component in the Virtuoso-opensource web application development platform allows a attacker to trigger a service failure.
The vulnerability of the dfeqexplist component in the Virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to trigger a service failure using specially created SQL...
The vulnerability of the strhash component of the Virtuoso-opensource web application development platform allows a attacker to trigger a service failure.
The vulnerability of the strhash component of the Virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to trigger a service failure using specially created SQL...
The vulnerability of the gpf_notice component in the Virtuoso-opensource web application development platform allows a attacker to trigger a service failure.
The vulnerability of the gpfnotice component in the Virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to trigger a service failure using specially created SQL...
The vulnerability of the __libc_longjmp component in the Virtuoso-opensource web application development platform allows a attacker to trigger a service failure.
The vulnerability of the libclongjmp component in the Virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to trigger a service failure using specially created SQL...
The vulnerability of the sqlc_make_policyTrig component in the Virtuoso-opensource web application development platform allows a attacker to cause a service failure.
The vulnerability of the sqlcmakepolicyTrig component in the Virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow a malicious actor to trigger a service failure using specially...
The vulnerability of the _IO_default_xsputn component in the Virtuoso-opensource web application development platform allows a attacker to trigger a service failure.
The vulnerability of the IOdefaultxsputn component in the Virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to trigger a service failure using specially created...
The vulnerability of the chash_array component in the Virtuoso-opensource web application development platform allows a hacker to trigger a service failure.
The vulnerability of the chasharray component in the Virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to trigger a service failure using specially created SQL...
The vulnerability of the stricmp component in the Virtuoso-opensource web application development platform allows a attacker to trigger a service failure.
The vulnerability of the stricmp component of the Virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to trigger a service failure using specially created SQL...
PT-2024-7351 · Hikvision · Hikcentral Professional
Name of the Vulnerable Software and Affected Versions: HikCentral Professional versions prior to 2.6.0 Description: The issue is related to a SQL injection vulnerability. This could allow an authenticated user to execute arbitrary SQL queries. The vulnerability is remotely exploitable...
The vulnerability of the __libc_malloc component in the Virtuoso-opensource web application development platform allows a attacker to cause a service failure.
The vulnerability of the libcmalloc component in the Virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to cause service failures using specially created SQL...
The vulnerability of the dk_set_delete component in the Virtuoso-opensource web application development platform allows a attacker to trigger a service failure.
The vulnerability of the dksetdelete component in the Virtuoso-opensource web application development platform is related to improper elimination of special elements used in SQL commands. Exploiting this vulnerability can allow an attacker to trigger a service failure using specially created SQL...
WordPress plugin Ajax Rating with Custom Login SQL注入漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...
The vulnerability of the centreon-web component of the Centreon software for monitoring IT infrastructure allows a perpetrator to enhance their privileges and execute arbitrary code.
The vulnerability of the centreon-web component of the IT infrastructure monitoring software lies in the lack of protective measures for the SQL query structure. This allows attackers to enhance their privileges and execute arbitrary code using a specially created SQL query...
The vulnerability of the centreon-web component of the Centreon software for monitoring IT infrastructure allows a perpetrator to enhance their privileges and execute arbitrary code.
The vulnerability of the centreon-web component of the IT infrastructure monitoring software lies in the lack of protective measures for the SQL query structure. This allows attackers to enhance their privileges and execute arbitrary code using a specially created SQL query...
Dell OpenManage Enterprise SQL注入漏洞
Dell OpenManage Enterprise is an easy-to-use, one-to-many system management console for IT infrastructure management from Dell, Inc. The software supports cost-effective, comprehensive lifecycle management of Dell EMC PowerEdge servers from a single console. A SQL injection vulnerability exists i...