The vulnerability of the SQL ODBC plugin for the cross-platform development framework for Qt software allows a hacker to induce a service failure.

The vulnerability of the SQL ODBC plugin for the cross-platform development framework for Qt software relates to improper cleaning or release of resources. Exploiting this vulnerability can allow a malicious actor to cause service failures by using specially created data...

IBM i SQL注入漏洞

IBM i is a suite of operating systems from International Business Machines IBM running in IBM Power Systems and IBM PureSystems. A security vulnerability exists in IBM i versions 7.2 through 7.5, which stems from a vulnerability that could allow an authenticated privileged administrator to gain...

CVE-2023-30944

The vulnerability was found Moodle which exists due to insufficient sanitization of user-supplied data in external Wiki method for listing pages. A remote attacker can send a specially crafted request to the affected application and execute limited SQL commands within the application database...

CVE-2022-41400

Sage 300 through 2022 uses a hard-coded 40-byte blowfish key to encrypt and decrypt user passwords and SQL connection strings stored in ISAM database files in the shared data directory. This issue could allow attackers to decrypt user passwords and SQL connection strings...

AC Repair and Services System SQL注入漏洞

AC Repair and Services System is an air conditioning repair and services system by Carlo Montero Personal Developer. A SQL injection vulnerability exists in AC Repair and Services System version 1.0, which stems from a misuse of the parameter id resulting in sql injection...

IBM DB2 输入验证错误漏洞

IBM DB2 is a relational database management system from International Business Machines IBM. The system is implemented in UNIX, Linux, IBMi, z/OS, and Windows server versions. IBM DB2 suffers from an input validation error vulnerability that stems from susceptibility to denial-of-service attacks,...

PT-2023-19396 · Sourcecodester · Ac Repair/Services System

Name of the Vulnerable Software and Affected Versions: SourceCodester AC Repair and Services System version 1.0 Description: A critical issue was found in the system, affecting the file /admin/services/view service.php. The manipulation of the id argument leads to SQL injection. It is possible to...

Service Provider Management System SQL注入漏洞

Service Provider Management System is a web-based application by Carlo Montero, an individual developer. It is designed to provide dynamic websites for service provider companies. A SQL injection vulnerability exists in Service Provider Management System version 1.0, which can be exploited by...

Pimcore SQL注入漏洞

Pimcore is Austria Pimcore company's set of open source for creating and managing Web applications Web content management platform. The platform integrates Web content management, e-commerce framework and product information management applications. A SQL injection vulnerability exists in Pimcore...

PT-2023-22590 · Ourphp · Ourphp

Name of the Vulnerable Software and Affected Versions: OURPHP versions 7.2.0 and earlier Description: The issue is related to SQL Injection. Recommendations: For OURPHP versions 7.2.0 and earlier, update to a version later than 7.2.0 to resolve the issue...

Medicine Tracker System SQL注入漏洞

Medicine Tracker System is a drug tracking system by Carlo Montero Personal Developer. A security vulnerability exists in Medicine Tracker System version 1.0.0. An attacker could exploit this vulnerability to perform SQL injection attacks...

PT-2023-9990 · Arc2 · Arc2

Name of the Vulnerable Software and Affected Versions: ARC aka ARC2 through 2011-12-01 Description: The issue allows blind SQL Injection in the getTriplePatternSQL function within ARC2 StoreSelectQueryHandler.php via comments in a SPARQL WHERE clause. Recommendations: For ARC aka ARC2 through...

Joomla SQL注入漏洞

Joomla is an open source, cross-platform content management system CMS developed using PHP and MySQL by the U.S. Open Source Matters team. Joomla 3 suffers from a security vulnerability that stems from improper use of input filters leading to SQL injection. An attacker exploiting the vulnerabilit...

CVE-2023-2215

A vulnerability classified as critical has been found in Campcodes Coffee Shop POS System 1.0. Affected is an unknown function of the file /admin/user/manageuser.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

Campcodes Coffee Shop POS System SQL注入漏洞

Campcodes Coffee Shop POS System is a coffee shop POS system from Campcodes. A SQL injection vulnerability exists in Campcodes Coffee Shop POS System version 1.0, which can be exploited by attackers to execute illegal SQL commands to steal sensitive database data...

PT-2023-18372 · Campcodes · Campcodes Coffee Shop Pos System

Name of the Vulnerable Software and Affected Versions: Campcodes Coffee Shop POS System version 1.0 Description: A critical issue has been found in the system, affecting the /admin/products/view product.php file. The manipulation of the id argument leads to SQL injection, allowing for remote...

Campcodes Retro Basketball Shoes Online Store SQL注入漏洞

Campcodes Retro Basketball Shoes Online Store is an online store for retro basketball shoes from Campcodes. A SQL injection vulnerability exists in Campcodes Retro Basketball Shoes Online Store version 1.0, which originates from a SQL injection vulnerability in the parameter email in the file...

CVE-2023-30076

Sourcecodester Judging Management System v1.0 is vulnerable to SQL Injection via /php-jms/printjudges.php?printjudges.php=&sename=&subeventid=...

PT-2023-22782 · Archery · Archery

Name of the Vulnerable Software and Affected Versions: Archery affected versions not specified Description: The Archery project contains multiple SQL injection vulnerabilities, allowing an attacker to query connected databases. The issue arises from the explain method in sql optimize.py, where us...

CVE-2023-1873

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Faturamatik Bircard allows SQL Injection. This issue affects Bircard: before 23.04.05...