WordPress plugin Contact Form by WD security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed using the PHP language, which supports personal blogs on PHP and MySQL servers.WordPress plugin is an...

PT-2024-15597 · Taokeyun · Taokeyun

Name of the Vulnerable Software and Affected Versions: Taokeyun versions up to 1.0.5 Description: A critical issue has been found in the HTTP POST Request Handler component, specifically in the function index of the file application/index/controller/m/Drs.php. The manipulation of the cid argument...

PT-2024-15610 · Unknown · Kashipara Billing

Name of the Vulnerable Software and Affected Versions: Kashipara Billing Software version 1.0 Description: A critical issue has been found in the HTTP POST Request Handler component, specifically in the file submit delivery list.php. The manipulation of the customer details argument leads to sql...

Judging Management System security breach

Judging Management System is a review management system by Carlo Montero Personal Developer. A security vulnerability exists in Sourcecodester Judging Management System v1.0, which stems from a SQL injection vulnerability that allows remote attackers to execute arbitrary code and obtain sensitive...

Judging Management System security breach

Judging Management System is a judging management system by Carlo Montero Personal Developer. A security vulnerability exists in Sourcecodester Judging Management System v1.0, which stems from an SQL injection vulnerability that allows remote attackers to execute arbitrary code and obtain sensiti...

CVE-2024-0280

A vulnerability has been found in Kashipara Food Management System up to 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file itemtypesubmit.php. The manipulation of the argument typename leads to sql injection. The attack can be launched remotely...

Kashipara Billing Software SQL Injection Vulnerability

Kashipara Billing Software is an application from Kashipara India. A security vulnerability exists in the v1.0 version of Kashipara Billing Software, which stems from the unfiltered processing of the cancelid parameter on the materialbill.php page before sending the data to the database for...

PT-2024-1097 · Sourcecodester · Sourcecodester Engineers Online Portal

Name of the Vulnerable Software and Affected Versions: SourceCodester Engineers Online Portal version 1.0 Description: The issue is related to the lack of protection of the SQL query structure in the /admin/ component of the Admin Login feature. This allows a remote attacker to execute arbitrary...

PT-2023-31668 · Unknown · Login Lockdown

Name of the Vulnerable Software and Affected Versions: Login Lockdown – Protect Login Form versions n/a through 2.06 Description: The issue is related to an Improper Neutralization of Special Elements used in an SQL Command, also known as 'SQL Injection'. This allows for potential exploitation by...

PT-2023-32912 · Unknown · Campcodes Online College Library System

Name of the Vulnerable Software and Affected Versions: Campcodes Online College Library System version 1.0 Description: A critical vulnerability has been found in the Search component of the Campcodes Online College Library System, affecting unknown code in the file index.php. The manipulation of...

PT-2023-31292 · Unknown · Job Portal

Name of the Vulnerable Software and Affected Versions: Job Portal version 1.0 Description: The issue concerns unauthenticated SQL Injection vulnerabilities. Specifically, the txtDesc parameter of the "Employer/InsertWalkin.php" resource does not validate the characters received, sending them...

Tongda2000 SQL Injection Vulnerability

Tongda2000 is a network intelligent office system of China Tongda Tongda Company. Tongda2000 11.9 and previous versions exist SQL injection vulnerability, the vulnerability stems from General/wiki/cp/ct/view.php in the existence of some unknown processing, through the parameter TEMPID lead to SQL...

CVE-2023-6898

A vulnerability classified as critical has been found in SourceCodester Best Courier Management System 1.0. Affected is an unknown function of the file manageuser.php. The manipulation of the argument id leads to sql injection. The exploit has been disclosed to the public and may be used. The...

RockOA Security Breach

RockOA Xinhuo is an open source office OA system. RockOA 2.3.3 before the version of a security vulnerability , the vulnerability stems from the vulnerability to SQL injection attacks...

Piccolo Security Breach

Piccolo is Piccolo open source a fast , user-friendly ORM and query builder . Piccolo 1.1.1 before the version has a security vulnerability , the vulnerability stems from the vulnerability to SQL injection attacks , attackers can use the vulnerability to directly access the database...

CVE-2023-25045

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in David F. Carr RSVPMaker allows SQL Injection.This issue affects RSVPMaker: from n/a through 9.9.3...

CVE-2023-26584

Unauthenticated SQL injection in the GetStudentInconsistencies method in IDAttend’s IDWeb application 3.1.052 and earlier allows extraction or modification of all data by unauthenticated attackers...

IDAttend IDWeb SQL Injection Vulnerability

IDAttend IDWeb is a web-based module from IDAttend, Inc. A security vulnerability exists in IDAttend IDWeb version 3.1.052 and prior versions that stems from an unauthenticated SQL injection in the GetExcursionList method...

PT-2023-6632

Name of the Vulnerable Software and Affected Versions F5 BIG-IP Configuration utility affected versions not specified Description An authenticated SQL injection vulnerability exists in the BIG-IP Configuration utility, which may allow an authenticated attacker with network access to the...

Online Computer and Laptop Store SQL Injection Vulnerability

Online Computer and Laptop Store is an online computer and laptop store by Carlo Montero Personal Developer. A SQL injection vulnerability exists in Online Computer and Laptop Store version 1.0, which originates from a SQL injection vulnerability in the file products.php...