WordPress plugin MDTF SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection...

Code-Projects Online Book Shop 注入漏洞

Code-Projects Online Book Shop is a Code-Projects open source online bookstore. An injection vulnerability exists in Code-Projects Online Book Shop version 1.0, which stems from an SQL injection vulnerability in the cat parameter of the /subcat.php page...

CVE-2024-12936

A vulnerability, which was classified as critical, has been found in code-projects Simple Admin Panel 1.0. This issue affects some unknown processing of the file catDeleteController.php. The manipulation of the argument record leads to sql injection. The attack may be initiated remotely. The...

PT-2024-17809 · Code Projects · Code-Projects Job Recruitment

Name of the Vulnerable Software and Affected Versions: code-projects Job Recruitment version 1.0 Description: A critical issue affects the add edu function of the file / parse/ all edits.php. The manipulation of the degree argument leads to SQL injection. The attack may be initiated remotely. Oth...

PT-2024-17778 · Unknown · Code-Projects Online Exam Mastering System

Name of the Vulnerable Software and Affected Versions: code-projects Online Exam Mastering System version 1.0 Description: A critical issue has been found in the system, affecting an unknown function of the file /account.php?q=quiz&step=2. The manipulation of the eid argument leads to SQL...

CVE-2024-56047

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in VibeThemes WPLMS allows SQL Injection.This issue affects WPLMS: from n/a before 1.9.9.5.3...

PT-2024-36627 · Unknown · Dr Affiliate

Name of the Vulnerable Software and Affected Versions: Dr Affiliate versions 1.2.3 and earlier Description: The issue is related to an SQL Injection vulnerability, which allows attackers to manipulate SQL commands. This is due to the improper neutralization of special elements used in an SQL...

CVE-2024-12484

A vulnerability classified as critical was found in Codezips Technical Discussion Forum 1.0. This vulnerability affects unknown code of the file /signuppost.php. The manipulation of the argument Username leads to sql injection. The attack can be initiated remotely. The exploit has been disclosed ...

1000 Projects Attendance Tracking Management System 注入漏洞

1000 Projects Attendance Tracking Management System is an open source attendance management system from 1000 Projects. An injection vulnerability exists in 1000 Projects Attendance Tracking Management System version 1.0, which originates from the parameter adminusername in the file...

PT-2024-36093 · Unknown · Roninwp Revy

Name of the Vulnerable Software and Affected Versions: Roninwp Revy versions 1.18 and earlier Description: The issue is related to an Improper Neutralization of Special Elements used in an SQL Command, also known as a SQL Injection vulnerability. This vulnerability affects the Roninwp Revy...

WordPress KiviCare – Clinic & Patient Management System (EHR) plugin <= 3.6.4 - Unauthenticated SQL Injection vulnerability

Unauthenticated SQL Injection vulnerability discovered by shaman0x01 in WordPress Plugin KiviCare versions = 3.6.4...

WordPress plugin FAT Services Booking SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

SiYuan 安全漏洞

SiYuan is a privacy-first personal knowledge management system from SiYuan open source. A security vulnerability exists in SiYuan version 3.1.11, which stems from the ids array parameter of the /batchGetBlockAttrs file containing a SQL injection vulnerability...

itsourcecode Tailoring Management System 安全漏洞

itsourcecode Tailoring Management System is a tailoring management system from itsourcecode open source. A security vulnerability exists in version 1.0 of itsourcecode Tailoring Management System, which stems from an incorrect manipulation of the parameter id that can lead to sql injection...

CVE-2024-11257

A vulnerability classified as critical has been found in 1000 Projects Beauty Parlour Management System 1.0. This affects an unknown part of the file /admin/forgot-password.php. The manipulation of the argument email leads to sql injection. It is possible to initiate the attack remotely. The...

KASO 安全漏洞

KASO is an application from KASO Inc. A security vulnerability exists in KASO v9.0, which stems from the discovery of an SQL injection vulnerability via the personid parameter in /cardcase/editcard.jsp...

Kashipara E-learning Management System 安全漏洞

Kashipara E-learning Management System is a learning management system from Kashipara Corporation. A security vulnerability exists in Kashipara E-learning Management System version 1.0, which originates from SQL injection of the parameters firstname and lastname...

PT-2024-34422 · Unknown · Kashipara E-Learning Management System Project

Name of the Vulnerable Software and Affected Versions: kashipara E-learning Management System Project version 1.0 Description: A SQL Injection issue was found in the /admin/class.php file via the class name parameter. This allows for potential exploitation. Recommendations: For kashipara E-learni...

Ivanti Endpoint Manager 安全漏洞

Ivanti Endpoint Manager is a comprehensive endpoint management solution developed by Ivanti to unify the management of all types of devices in an enterprise network, including Windows, macOS, Linux, ChromeOS, mobile devices and IoT devices. An SQL injection vulnerability exists in Ivanti Endpoint...

WordPress Horsemanager plugin <= 1.3 - SQL Injection vulnerability

SQL Injection vulnerability discovered by LVT-tholv2k Patchstack Alliance in WordPress Plugin Horsemanager versions = 1.3...