doorGets SQL Injection Vulnerability (CNVD-2019-13802)

DoorGets is a free and open source content management system. A SQL injection vulnerability exists in /doorgets/app/requests/user/modulecategoryRequest.php in doorGets 7.0. This vulnerability can be exploited by a user with remote backend administrator privileges or a user with manage...

doorGets SQL Injection Vulnerability (CNVD-2019-26507)

doorGets is a content management system CMS. The system supports multiple languages, and system backups and theme changes, etc. A SQL injection vulnerability exists in doorGets version 7.0, which can be exploited by attackers to execute illegal SQL commands...

doorGets SQL Injection Vulnerability (CNVD-2019-26504)

doorGets is a content management system CMS. The system supports multiple languages, and system backups and theme changes, etc. A SQL injection vulnerability exists in doorGets version 7.0, which can be exploited by attackers to execute illegal SQL commands...

Vulnerability of the Server: Optimizer component of the MySQL database management system, which allows a hacker to cause a service failure.

The vulnerability of the Server: Optimizer component of the MySQL database management system is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

SQL injection vulnerability in ch***.asp file of Dynamic Sciences enterprise website management system

Dynamic enterprise website management system is an asp + access for the development of enterprise website source code. There is a SQL injection vulnerability in the ch.asp file. An attacker can exploit the vulnerability to obtain sensitive information from the database...

SQL injection vulnerability in the ch***.asp file of the enterprise website management system of Dynamic Science (CNVD-2019-13589)

Dynamic enterprise website management system is an asp + access for the development of enterprise website source code. There is a SQL injection vulnerability in the ch.asp file. An attacker can exploit the vulnerability to obtain sensitive information from the database...

SQL Injection Vulnerability in Website Building System of Ningbo Mufeng Network Technology Co.

Ningbo Mufeng Network Technology Co., Ltd. is a website design company with the core business of website construction, website production, website development, graphic design and corporate branding in Ningbo. There is a SQL injection vulnerability in the website building system of Ningbo Mufeng...

Magento SQL Injection Vulnerability

Magento is an open source PHP e-commerce system of the United States Magento company . The system provides rights management , search engine and payment gateway and other functions. A SQL injection vulnerability exists in Magento, which stems from a lack of validation of externally entered SQL...

MKCMS SQL Injection Vulnerability

MKCMS is a content management system. A SQL injection vulnerability exists in MKCMS version V5.0. The vulnerability stems from a lack of validation of externally entered SQL statements in database-based applications. An attacker can exploit this vulnerability to execute illegal SQL commands...

UBUNTU-CVE-2018-20505

SQLite 3.25.2, when queries are run on a table with a malformed PRIMARY KEY, allows remote attackers to cause a denial of service application crash by leveraging the ability to run arbitrary SQL statements such as in certain WebSQL use cases...

CVE-2019-10707

MKCMS V5.0 has SQL injection via the bplay.php play parameter...

Domoticz SQL Injection Vulnerability

Domoticz is an open source smart home system. The system supports monitoring and controlling a wide range of smart home devices. A SQL injection vulnerability exists in Domoticz versions prior to 4.10578, which stems from a lack of validation of externally entered SQL statements in database-based...

The vulnerability of the pg_upgrade and pg_dump utilities in the PostgreSQL database management system allows a hacker to execute arbitrary SQL commands.

The vulnerability of the pgupgrade and pgdump utilities in the PostgreSQL database management system is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL commands remotely...

CVE-2019-9053

An issue was discovered in CMS Made Simple 2.2.8. It is possible with the News module, through a crafted URL, to achieve unauthenticated blind time-based SQL injection via the m1idlist parameter...

SQL Injection Vulnerability in Leer's Resource Platform

Founded in 2008, Aotong Dalian Technology Development Co., Ltd. is an educational brand engaged in the research and development of original children's digital resources. A SQL injection vulnerability exists in the Le'er Resource Platform, which can be exploited by an attacker to obtain sensitive...

SQL Injection Vulnerability in the jdo*** Component jdo*** Module of joomla!

joomla! is an open source content management system CMS. A SQL injection vulnerability exists in the jdo module of the joomla! jdo component. The vulnerability allows attackers to obtain sensitive information about the database...

Hsycms v1.1 suffers from SQL Injection Vulnerability

Hsycms is an enterprise-level web content management system, written by PHP+MYSQL, using template separation technology to support the creation of many types of sites. Hsycms v1.1 suffers from a SQL injection vulnerability. An attacker can exploit the vulnerability to obtain sensitive database...

SQL Injection Vulnerability in 74cms in***.php Page

Knight Talent System 74cms is a talent recruitment system based on PHP+MYSQL. A SQL injection vulnerability exists in the 74cms in.php page, which can be exploited by attackers to obtain sensitive information...

SQL Injection Vulnerability in Website Management System of Suzhou Topps Network Technology Co.

Suzhou Topps Network Technology, one-stop solution for website construction program. Suzhou Topps Network Technology Co., Ltd. website building system exists SQL injection vulnerability, allowing attackers to utilize commonly used SQL injection tools, access to sensitive information in the...

SQL Injection Vulnerability in OFCMS System Management Service

OFCMS is a content management system developed based on java technology. A SQL injection vulnerability exists in the OFCMS system administration, which can be exploited by attackers to obtain sensitive information from the database...