Maid Hiring Management System Cross-Site Scripting Vulnerability

PHPGurukul Maid Hiring Management System is a maid hiring management system from PHPGurukul, Inc. A security vulnerability exists in Maid Hiring Management System v1.0, which originates from a SQL injection vulnerability in the Search Maid page...

Oduyo Online Collection Software SQL Injection Vulnerability

Oduyo Online Collection Software is a software from Oduyo, Inc. Oduyo Online Collection Software before 1.0.1 suffers from a SQL injection vulnerability that stems from incorrect neutralization of special elements used in SQL commands...

ChurchCRM SQL Injection Vulnerability

ChurchCRM is an open source CRM system for churches. A security vulnerability exists in ChurchCRM version v.5.0.0 that stems from the presence of a SQL injection vulnerability...

mAyaNet E-Commerce SQL Injection Vulnerability

mAyaNet E-Commerce is an e-commerce platform from mAyaNet, Inc. A SQL injection vulnerability exists in mAyaNet E-Commerce versions prior to 1.1, which stems from incorrect neutralization of special elements used in SQL commands...

a2 License Portal System SQL Injection Vulnerability

a2 License Portal System is a license portal system from a2 License Portal System, Inc. A SQL injection vulnerability exists in a2 License Portal System versions prior to 1.48, which arises from incorrect neutralization of special elements used in SQL commands...

CVE-2023-4200

A vulnerability has been found in SourceCodester Inventory Management System 1.0 and classified as critical. This vulnerability affects unknown code of the file productdata.php.. The manipulation of the argument columns1data leads to sql injection. The attack can be initiated remotely. The exploi...

CVE-2023-4199

A vulnerability, which was classified as critical, was found in SourceCodester Inventory Management System 1.0. This affects an unknown part of the file catagorydata.php. The manipulation of the argument columns1data leads to sql injection. It is possible to initiate the attack remotely. The...

Inventory Management System SQL注入漏洞

Inventory Management System is an inventory management system. A SQL injection vulnerability exists in Inventory Management System version 1.0, which originates from a SQL injection via the uppid parameter on the editsell.php page. No details of the vulnerability are available at this time...

CVE-2023-33366

A SQL injection vulnerability exists in Suprema BioStar 2 before 2.9.1, which allows authenticated users to inject arbitrary SQL directives into an SQL statement and execute arbitrary SQL commands...

The vulnerability of the function com.imc.iview.utils.CUtils.checkSQLInjection() in the system for centralized control of network devices and ports of Advantech iView allows a attacker to execute arbitrary SQL commands.

The vulnerability of the com.imc.iview.utils.CUtils.checkSQLInjection function in the system for managing network devices and ports of Advantech iView is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute...

CVE-2023-37647

SEMCMS v1.5 was discovered to contain a SQL injection vulnerability via the id parameter at /AntSuxin.php...

The vulnerability of the Analytics Server component of the Oracle Business Intelligence Enterprise Edition software allows a perpetrator to execute arbitrary SQL commands.

The vulnerability of the Analytics Server component of the Oracle Business Intelligence Enterprise Edition software lies in the lack of security measures for SQL query structures. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL commands remotely...

GHSA-WP6C-29R3-JQW9 SQL injection in jeecg-boot

jeecg-boot v3.5.1 was discovered to contain a SQL injection vulnerability via the title parameter at /sys/dict/loadTreeData...

CVE-2023-3984

A vulnerability, which was classified as critical, was found in phpscriptpoint RecipePoint 1.9. This affects an unknown part of the file /recipe-result. The manipulation of the argument text/category/type/difficulty/cuisine/cookingmethod leads to sql injection. It is possible to initiate the atta...

Jeecg-Boot SQL注入漏洞

Jeecg-Boot is a low-code platform based on a code generator from the JeecgBoot community. A security vulnerability exists in Jeecg-Boot version 3.5.1, which stems from a SQL injection vulnerability in the parameter title...

The vulnerability of the SonicWall Analytics analytical service and the SonicWall Global Management System (GMS) global network firewall management system lies in the lack of protection for the SQL query structure, which allows attackers to exploit the protected information.

The vulnerability of the SonicWall Analytics analytical service and the SonicWall Global Management System GMS global network firewall management system is related to the lack of protection for the SQL query structure. Exploiting this vulnerability can allow a malicious actor to disclose protecte...

CVE-2022-46898

An issue was discovered in Vocera Report Server and Voice Server 5.x through 5.8. There is Path Traversal via the "restore SQL data" filename. The Vocera Report Console contains a websocket function that allows for the restoration of the database from a ZIP archive that expects a SQL import file...

PT-2023-26602 · Unknown · Campcodes Beauty Salon Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Beauty Salon Management System version 1.0 Description: A critical issue has been found in the system, affecting the /admin/about-us.php file. The manipulation of the pagedes argument leads to SQL injection. This issue can be...

Campcodes Beauty Salon Management System SQL注入漏洞

Campcodes Beauty Salon Management System is a beauty salon management system from Campcodes, Inc. Campcodes Beauty Salon Management System suffers from a SQL injection vulnerability that stems from the operation of the pagedes parameter of unknown code in the file /admin/about-us.php that can lea...

PT-2023-26604 · Unknown · Campcodes Beauty Salon Management System

Name of the Vulnerable Software and Affected Versions: Campcodes Beauty Salon Management System version 1.0 Description: A critical vulnerability has been found in the system. The issue is related to an unknown function of the file /admin/del service.php, where the manipulation of the editid...