Code-Projects Blood Bank Management System SQL注入漏洞

Code-Projects Blood Bank Management System is a Code-Projects open source blood bank management system. A SQL injection vulnerability exists in Code-Projects Blood Bank Management System version 1.0, which originates from an SQL injection vulnerability in the reqid parameter of the /file/accept.p...

Petrol Pump Management Software SQL注入漏洞

Petrol Pump Management Software is a gasoline pump management software by mayurik individual developer. A SQL injection vulnerability exists in Petrol Pump Management Software version 1.0, which originates from a SQL injection vulnerability contained in the id parameter of the...

SQL Injection

Overview Affected versions of this package are vulnerable to SQL Injection due to improper input sanitization via the editfile method in \controller\Index.php file . An attacker can execute arbitrary SQL commands by injecting malicious SQL code into the input parameters. Remediation There is no...

SQL Injection

Overview Affected versions of this package are vulnerable to SQL Injection through list method in curd\controller\Table.php file. An attacker can manipulate SQL queries and access or modify data in the database. Remediation There is no fixed version for funadmin/funadmin. References - GitHub Issu...

Codezips Sales Management System SQL注入漏洞

Codezips Sales Management System is a Codezips open source sales management system. A SQL injection vulnerability exists in Codezips Sales Management System version 1.0, which is caused by improper handling of the refno parameter in the /addcustind.php file...

FunAdmin 安全漏洞

FunAdmin is FunAdmin open source a lightweight and high-color backend development system based on ThinkPHP6+Layui development. A security vulnerability exists in FunAdmin version 5.0.2, which originates from an SQL injection vulnerability in /curd/table/list...

FunAdmin 安全漏洞

FunAdmin is FunAdmin open source development based on ThinkPHP6 + Layui development of a lightweight high-color backend development system. A security vulnerability exists in FunAdmin version 5.0.2, which originates from an SQL injection vulnerability in the parentField parameter of the index...

EsafeNet CDG SQL注入漏洞

EsafeNet CDG is a document security management system from EsafeNet. A SQL injection vulnerability exists in EsafeNet CDG version 5, which stems from an incorrect manipulation of the parameter id that can lead to sql injection...

CVE-2024-10350

A vulnerability was found in code-projects Hospital Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /admin/add-doctor.php. The manipulation of the argument docname leads to sql injection. The attack can be initiated remotely. The exploi...

WordPress plugin Product Filter by WBW SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

SourceCodeHero Clothes Recommendation System SQL注入漏洞

SourceCodeHero Clothes Recommendation System is a SourceCodeHero open source clothing recommendation system. SourceCodeHero Clothes Recommendation System version 1.0 suffers from a SQL injection vulnerability, which originates from the parameter t1 in the file /admin/index.php of the component...

Code-Projects Hospital Management System SQL注入漏洞

Hospital Management System a hospital management system. Hospital Management System has a SQL injection vulnerability that originates from the parameter docname in the file /admin/add-doctor.php that can lead to SQL injection. No details of the vulnerability are available at this time...

EsafeNet CDG SQL注入漏洞

EsafeNet CDG is a document security management system from EsafeNet. EsafeNet CDG 5 suffers from a SQL injection vulnerability, which originates from the userId parameter of the /com/esafenet/servlet/user/ReUserOrganiseService.java page contains a SQL injection vulnerability...

Cisco Secure Firewall Management Center 安全漏洞

Cisco Secure Firewall Management Center is a powerful network security management tool from Cisco USA. A security vulnerability exists in Cisco Secure Firewall Management Center that originates from the web management interface not adequately validating user input. An attacker could exploit this...

The vulnerability of the Vinteo video conference software server lies in the lack of protective measures for SQL query structures, allowing attackers to enhance their privileges and execute arbitrary code.

The vulnerability of the Vinteo video conference software server relates to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to enhance their privileges and execute arbitrary code using a specially crafted SQL query...

CVE-2024-48657

SQL Injection vulnerability in hospital management system in php with source code v.1.0.0 allows a remote attacker to execute arbitrary code...

CVE-2024-30158

A vulnerability in the web conferencing component of Mitel MiCollab through 9.7.1.110 could allow an authenticated attacker with administrative privileges to conduct a SQL Injection attack due to insufficient validation of user input. A successful exploit could allow an attacker to execute...

CVE-2024-30157

A vulnerability in the Suite Applications Services component of Mitel MiCollab through 9.7.1.110 could allow an authenticated attacker with administrative privileges to conduct a SQL Injection attack due to insufficient validation of user input. A successful exploit could allow an attacker to...

CVE-2024-47223

A vulnerability in the AWV Audio, Web and Video Conferencing component of Mitel MiCollab through 9.8 SP1 FP2 9.8.1.201 could allow an unauthenticated attacker to conduct a SQL injection attack due to insufficient sanitization of user input. A successful exploit could allow an attacker to access...

WordPress WP Sessions Time Monitoring Full Automatic plugin <= 1.0.9 - SQL Injection vulnerability

SQL Injection vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin WP Sessions Time Monitoring Full Automatic versions = 1.0.9...