CVE-2023-35064

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Satos Satos Mobile allows SQL Injection through SOAP Parameter Tampering. This issue affects Satos Mobile: before 20230607...

CVE-2023-3047

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in TMT Lockcell allows SQL Injection. This issue affects Lockcell: before 15...

PT-2023-23362 · Unknown · Sourcecodester Online Discussion Forum Site

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Discussion Forum Site version 1.0 Description: A critical issue has been discovered, allowing for SQL injection through the manipulation of the id argument in an unknown function of the file adminusermanage user.php. Thi...

WordPress plugin YARPP SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerability exist...

Service Provider Management System SQL注入漏洞

Service Provider Management System is a web-based application developed by Carlo Montero, an individual developer. It is designed to provide dynamic websites for service provider companies. A SQL injection vulnerability exists in SourceCodester Service Provider Management System version 1.0, whic...

The vulnerability of the Permalink Manager Lite plugin for the WordPress content management system lies in its lack of protection against SQL query structures, allowing attackers to execute arbitrary SQL code.

The vulnerability of the Permalink Manager Lite plugin for the WordPress content management system is related to the lack of protection for the SQL query structure when processing the orderby parameter. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL code remotely...

WordPress plugin Watu Quiz SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

Enrollment System Project SQL注入漏洞

Enrollment System Project is an enrollment system project by Carlo Montero Individual Developer. A security vulnerability exists in version 1.0 of Enrollment System Project that stems from the presence of a SQL injection vulnerability...

CVE-2023-3000

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Erikoglu Technology ErMon allows Command Line Execution through SQL Injection, Authentication Bypass.This issue affects ErMon: before 230602...

simpleRedak SQL注入漏洞

simpleRedak is a networking solution from the German company simpleRedak. A security vulnerability exists in simpleRedak version 2.47.23.05 and earlier, which stems from the presence of a SQL injection vulnerability...

Erikoglu Technology ErMon SQL注入漏洞

Erikoglu Technology ErMon is an application from Erikoglu Technology. A SQL injection vulnerability exists in Erikoglu Technology ErMon versions prior to 230602, which stems from an irregularity in a special element and allows SQL injection...

PT-2023-22511

Name of the Vulnerable Software and Affected Versions Erikoglu Technology ErMon versions prior to 230602 Description The issue is related to an SQL Injection vulnerability, allowing for Command Line Execution and Authentication Bypass. This is due to the improper neutralization of special element...

CVE-2023-29154

SQL injection vulnerability exists in the CONPROSYS HMI System CHS versions prior to 3.5.3. A user who can access the affected product with an administrative privilege may execute an arbitrary SQL command via specially crafted input to the query setting page...

Xibo SQL注入漏洞

Xibo is an open source content management system from Xibo Digital Signage. A security vulnerability exists in Xibo versions 3.2.0 through 3.3.2 and earlier, which stems from an SQL injection vulnerability that allows an authenticated user to steal data by injecting a specially crafted value into...

PT-2023-22332 · Sourcecodester · Sourcecodester Faculty Evaluation System

Name of the Vulnerable Software and Affected Versions: SourceCodester Faculty Evaluation System version 1.0 Description: A critical issue has been found in the SourceCodester Faculty Evaluation System, affecting some unknown functionality of the file "index.php?page=edit user". The manipulation o...

PT-2023-22292 · Unknown · Code-Projects Bus Dispatch/Information System

Name of the Vulnerable Software and Affected Versions: code-projects Bus Dispatch and Information System version 1.0 Description: A critical vulnerability has been found in the code-projects Bus Dispatch and Information System. The issue is related to an unknown function of the file delete bus.ph...

CVE-2023-33280

In the Store Commander scquickaccounting module for PrestaShop through 3.7.3, multiple sensitive SQL calls can be executed with a trivial HTTP request and exploited to forge a blind SQL injection...

PT-2023-24262 · Unknown +1 · Prestashop +1

Name of the Vulnerable Software and Affected Versions: PrestaShop versions through 3.6.1 Description: The issue allows sensitive SQL calls to be executed with a trivial HTTP request, which can be exploited to forge a blind SQL injection. This can occur in the Store Commander scexportcustomers...

PrestaShop SQL注入漏洞

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution offers multiple payment methods, short message alerts, and product image scaling. A security vulnerability exists in PrestaShop version 2023-05-09 and earlier, which stems from a sensitive SQ...

PrestaShop SQL注入漏洞

PrestaShop is an open source e-commerce solution from PrestaShop, Inc. in the United States. The solution provides multiple payment methods, short message alerts and product image scaling. A security vulnerability exists in PrestaShop 3.7.3 and prior versions, which stems from multiple sensitive...