Metinfo SQL Injection Vulnerability (CNVD-2019-42846)

MetInfo is a content management system CMS developed by China Mito MetInfo using PHP and Mysql. A SQL injection vulnerability exists in MetInfo. The vulnerability stems from a lack of validation of externally entered SQL statements in the database-based application. An attacker can exploit this...

CloudBoot SQL Injection Vulnerability

iDCOS CloudBoot is an open source X86 server configuration and installation tool from China's CloudBoot Technology iDCOS. CloudBoot suffers from a SQL injection vulnerability. The vulnerability stems from a lack of validation of externally entered SQL statements in database-based applications. An...

Centreon SQL Injection Vulnerability (CNVD-2019-42246)

Centreon Merethis Centreon is a French company Centreon needs to be used with Nagios with open source IT monitoring software. A SQL injection vulnerability exists in versions of Centreon Web prior to 2.8.27. The vulnerability stems from a lack of validation of externally entered SQL statements in...

The vulnerability in the web interface of the Cisco Unified Communications Manager system allows a perpetrator to disclose protected information.

The vulnerability of the Cisco Unified Communications Manager web interface management interface is related to the lack of protection for the SQL query structure. Exploiting this vulnerability allows a malicious actor to disclose sensitive information by sending a specially crafted SQL query...

Web Service suffers from sql injection vulnerability

WebService is a cross-programming language, cross-operating system platform remote invocation technology. Web Service has a sql injection vulnerability that can be exploited by an attacker to obtain sensitive database information...

XYCMS agent query authentication system SQL injection vulnerability

XYCMS enterprise agent authentication query program system is an asp + access for the development of agent authentication system. XYCMS agent query authentication system SQL injection vulnerability, attackers can use the vulnerability to obtain database sensitive information...

SQL Injection Vulnerability in UsualToolCMS

UsualToolCMS UTCMS is a content management system and rapid site building framework. Using template separation technology , support the creation of a variety of application platforms . Support for secondary development , rich template language and API for developers to call . UsualToolCMS SQL...

SQL Injection Vulnerability in Kaixin Quote System V2.0 pr***.aspx Page

The QI Quotation System is primarily for use by manufacturing companies. For incoming BOM list price monitoring. The system will automatically record the past quoted prices of BOM products, so that the purchasing staff can easily give new quotes. A SQL injection vulnerability exists in the Qixing...

SQL Injection Vulnerability in SeaCMS Backend (CNVD-2019-45357)

SeaCMS is a station building system based on PHP+MYSQL architecture and supports cross-platform operation. There is a SQL injection vulnerability in the background of SeaCMS, which can be exploited by attackers to obtain sensitive database information...

CVE-2019-0393

An SQL Injection vulnerability in SAP Quality Management corrected in S4CORE versions 1.0, 1.01, 1.02, 1.03 allows an attacker to carry out targeted database queries that can read individual fields of historical inspection results...

SQL Injection Vulnerability in Panmicro E-cology (CNVD-2019-45170)

Panmicro Collaborative Management Application Platform e-cology is a collaborative business platform with enterprise information portal, knowledge management, data center, workflow management, human resource management, customer and partner management, project management, financial management, an...

SQL injection vulnerability in the ad***.php page of Tuan ah VIP movie system (CNVD-2019-43831)

Tuan ah VIP movie system is a set of VIP movie video viewing website with registered member agent version. A SQL injection vulnerability exists in the ad.php page of Tuan Ah VIP Movie System, which can be exploited by attackers to obtain sensitive information from the database...

SQL Injection Vulnerability in Yunye CMS V2.0

Yunye cms enterprise building system is developed by php + mysql a set of open source cms dedicated to small and medium-sized enterprise website construction. Yunye CMSV2.0 SQL injection vulnerability , attackers can exploit the vulnerability to obtain database sensitive information...

Magento SQL Injection Vulnerability (CNVD-2019-40753)

Magento is an open source PHP e-commerce system of the United States Magento company . The system provides rights management , search engine and payment gateway and other functions. Magento has a SQL injection vulnerability. An attacker can exploit this vulnerability to execute illegal SQL comman...

Backup File Download Vulnerability in UKcms Frontend

UKcms is a PHP-based content management system CMS by China Lingji Network Technology. A backup file download vulnerability exists in the frontend of UKcms. Under unauthorized circumstances, an attacker can exploit the vulnerability to construct links to directly download SQL backup information...

SQL Injection Vulnerability in Network Office Automation Software of Shiyan 8.5 Technology Co.

Shiyan 8.5 Technology Co., Ltd. is a company specializing in management software development and implementation. The network office automation software of Shiyan Eighty Five Technology Co., Ltd. suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive...

SQL Injection Vulnerability in s-cms Enterprise Website Builder System

Shining CMS enterprise building station system is Zibo Shining Network Technology Co., Ltd. developed a specialized enterprise building station to provide solutions for the product, the front-end template style main HTML5 template, featuring good animation, page flow, responsive layout, the main...

WordPress Plugin Google Review Slider 'tid' SQL Injection Vulnerability

WordPress is a blogging platform based on the PHP language, which can be used to set up a website on a server that supports PHP and MySQL databases, and can also be used as a content management system CMS. A SQL injection vulnerability exists in the WordPress plugin Google Review Slider 'tid',...

One Stop Technology website builder system suffers from SQL injection vulnerability

One Stop Technology formerly Fuyang Tongtou.com, specializing in tourism enterprises to provide tourism network marketing one-stop service, we only focus on the tourism industry network marketing services, is the tourism network marketing one-stop service platform. There is a SQL injection...

TPshop open source mall system SQL injection vulnerabilities exist

TPshop open source mall system is a multi- merchant mode developed by Shenzhen SoBao Networks Co. Suitable for businesses and individuals to quickly build a personalized online shopping mall . System PC + background is based on ThinkPHP MVC framework for the development of cross-platform open...