Heilongjiang Yitong Network Technology Development Co., Ltd. website building system has SQL injection vulnerability

Heilongjiang Yitong Network Technology Development Co., Ltd. is an enterprise website building system. There is a SQL injection vulnerability in Heilongjiang Yitong Network Technology Development Co., Ltd. that can be exploited by attackers to obtain sensitive information from the database...

The vulnerability of the PQescape() function in the libpq library of the PostgreSQL database management system allows a hacker to disclose sensitive information that is protected by this function.

The vulnerability of the PQescape function in the libpq library of the PostgreSQL database management system is related to the lack of protective measures for the SQL query structure. Exploiting this vulnerability allows a malicious actor to disclose protected information through SQL injections...

SQL Injection Vulnerability in NetSoft Zhicheng Classifieds Website System

NetSoft Zhicheng classifieds website system is a php mysql based website building system. Netsoft Zhicheng classifieds website system has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information in the database...

SQL Injection Vulnerability in Daimi CMS_V6.0.6

Rice CMS is a free open source, fast, simple PC station and cell phone station building integrated integration system , to provide open source Android cell phone client APK and the corresponding server-side system source code download. Rice CMSV6.0.6 SQL injection vulnerability . Rice CMSV6.0.6...

SQL Injection Vulnerability in Sl***_St***.aspx of Bid 1.0 Backend of Qixing Engineering Bidding System

Qixing Bidding System is suitable for enterprises to collect information on government procurement, engineering construction, land grant and other bidding information, and to track the progress of works and payment of successful projects. QiStar Engineering Bidding System Bid 1.0 backend SlSt.asp...

SQL Injection Vulnerability in Bidding System Bid Frontend Wo***.aspx Page

Qixing Bidding System Bid is a system suitable for enterprises to collect information on bidding information of government procurement, engineering construction, land grant, etc., and to track the progress of works and payment of successful projects. A SQL injection vulnerability exists in the...

DEBIAN-CVE-2018-4056

An exploitable SQL injection vulnerability exists in the administrator web portal function of coTURN prior to version 4.5.0.9. A login message with a specially crafted username can cause an SQL injection, resulting in authentication bypass, which could give access to the TURN server administrator...

Component vWishlist SQL Injection Vulnerability in Joomla!

Joomla! is an open source content management system CMS. A SQL injection vulnerability exists in the Joomla! component vWishlist. An attacker can exploit the vulnerability to obtain sensitive database information...

SQL Injection Vulnerability in ThinkCMF 2.2.3 cl***.php Page

ThinkCMF is a Chinese content management framework based on PHP+MYSQL. A SQL injection vulnerability exists in the ThinkCMF 2.2.3 cl.php page. An attacker can exploit this vulnerability to obtain sensitive database information...

SQL Injection Vulnerability in HuCart ad***.php Page

HuCart HuCart is an open source enterprise building system. HuCart 5.7.4 version ad.php page SQL injection vulnerability , remote attackers can exploit the vulnerability to obtain database sensitive information...

CVE-2018-19468

HuCart 5.7.4 has SQL injection in getip in system/class/helperclass.php via the X-Forwarded-For HTTP header to the user/index.php?load=login&act=actlogin URI...

SeaCMS SQL Injection Vulnerability (CNVD-2019-08331)

SeaCMS Ocean CMS is a professional open source free PHP film and television system. SeaCMS 6.6.4 suffers from a SQL injection vulnerability, which can be exploited by attackers via the adminmakehtml.php topic parameter...

vulhub

It is an offensive tool for Web Application. The repository contains a collection of pre-built vulnerable docker environments, including a web application vulnerable to various attacks. The tool is designed to help developers and security researchers test and demonstrate the effectiveness of web...

MetInfo pa***.php file has sql injection vulnerability

MetInfo is a content management system developed using PHP and Mysql. A sql injection vulnerability exists in the MetInfo pa.php file, which can be exploited by an attacker to obtain sensitive information from the database...

CVE-2018-18787

An issue was discovered in zzcms 8.3. SQL Injection exists in zs/zs.php via a pxzs cookie...

REDAXO SQL Injection Vulnerability

REDAXO is an open source Web portal content management system . The system supports custom modules , plug-in extensions , project backup and so on. A SQL injection vulnerability exists in Benutzerverwaltung in versions prior to REDAXO 5.6.4. A remote attacker can exploit this vulnerability to...

ZZCMS 8.3 version zs***.php file has SQL injection vulnerability

ZZCMS is a CMS Content Management System used to quickly build Merchants type websites. A SQL injection vulnerability exists in the zs.php file of ZZCMS version 8.3. An attacker can exploit the vulnerability to obtain sensitive information from the database...

OpenEMR SQL Injection Vulnerability (CNVD-2018-17196)

OpenEMR is an open source medical management system maintained by the OpenEMR community. The system can be used for medical practice management, electronic medical records, prescription writing and medical billing requests. A SQL injection vulnerability exists in the...

SQL Injection Vulnerability in nucms V1.1

nucms is a content management system based on PHP+MYSQL technology developed by Liaocheng Leadsun Network Technology Co. nucms V1.1 version of SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive information...

SQL Injection Vulnerability in the Query of the Opinion Collection Module of SMi CMS Group Web Group System

State Micro CMS is one of the mainstream CMS systems in China, and is also the largest open source platform provider in the field of PHP in Southern China. SQL injection vulnerability exists in the query of the opinion collection module of the State Micro CMS group station group system. Attackers...