phoenixcf SQL注入漏洞

phoenixcf is an application by iamdroppy Personal Developer. phoenixcf suffers from a SQL injection vulnerability. An attacker could exploit this vulnerability to cause a sql injection...

PT-2023-10242 · Unknown · Theradsystem

Name of the Vulnerable Software and Affected Versions: saemorris TheRadSystem affected versions not specified Description: A critical issue was found in saemorris TheRadSystem, affecting the redirect function of the login.php file. The manipulation of the user/pass argument leads to SQL injection...

PT-2023-10002 · Unknown · Bricco Authenticator Plugin

Name of the Vulnerable Software and Affected Versions: Bricco Authenticator Plugin versions prior to 1.39 Description: A critical issue was found in the Bricco Authenticator Plugin, affecting the authenticate/compare function of the DBAuthenticator.java file. This issue leads to sql injection...

The vulnerability of the setTaskEditorItem component in the centralized network device and port management system Advantech iView allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the setTaskEditorItem component in the Centralized Network Devices and Ports Management System of Advantech iView relates to the lack of protective measures for the SQL query structure. Exploiting this vulnerability can allow an attacker, operating remotely, to gain...

Discussion-Board SQL注入漏洞

Discussion-Board is a PHP-based online forum. Discussion-Board suffers from a SQL injection vulnerability that originates in the function displayallreplies in the file functions/main.php, which operates on the parameter str to cause SQL injection...

PT-2023-10149 · Unknown · Agy Pontifex.Http

Name of the Vulnerable Software and Affected Versions: agy pontifex.http versions prior to 0.1.0 Description: A critical issue has been found in the agy pontifex.http software, affecting the lib/Http.coffee file, which can lead to sql injection. Recommendations: For versions prior to 0.1.0, upgra...

Online Food Ordering System SQL注入漏洞

Online Food Ordering System is an online food ordering system. an SQL injection vulnerability exists in Online Food Ordering System, which stems from a problem with some unknown functions in the file viewprod.php, where manipulation of the parameter id can lead to sql injection. No details of the...

CVE-2022-46954

Dynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/ajax.php?action=deletetransaction...

CVE-2022-46955

Dynamic Transaction Queuing System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /admin/ajax.php?action=savequeue...

Online Student Enrollment System SQL注入漏洞

Online Student Enrollment System is an online student enrollment system developed by Lyndon Bermoy, an individual developer. A security vulnerability exists in Online Student Enrollment System v1.0, which stems from a username parameter in its /studentenrollment/admin/login.php file that allows a...

Dynamic Transaction Queuing System SQL注入漏洞

Dynamic Transaction Queuing System is a dynamic transaction queuing system using PHP/MySQL by Carlo Montero, an individual developer. A security vulnerability exists in Dynamic Transaction Queuing System v1.0, which stems from the id parameter of its /admin/ajax.php?action=deleteuploads component...

PT-2023-16141 · Sourcecodester · Online Flight Booking Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Online Flight Booking Management System affected versions not specified Description: A critical issue has been discovered, affecting the file review search.php, specifically the POST Parameter Handler component. The manipulatio...

PT-2023-10000 · Unknown · Aeharding Classroom-Engagement-System

Name of the Vulnerable Software and Affected Versions: aeharding classroom-engagement-system affected versions not specified Description: A critical issue was found, allowing for SQL injection through some unknown functionality. The manipulation can be performed remotely. Recommendations: Apply t...

classroom-engagement-system SQL注入漏洞

classroom-engagement-system is a classroom engagement system by the individual developer Alexander Harding. A SQL injection vulnerability exists in classroom-engagement-system, which stems from a problem with some unknown functionality that can lead to sql injection...

CVE-2022-47865

Lead Management System v1.0 is vulnerable to SQL Injection via the id parameter in removeOrder.php...

pplv2 SQL注入漏洞

pplv2 is an application by Gokul Srinivas Personal Developer. A SQL injection vulnerability exists in pplv2. An attacker could exploit this vulnerability to perform a sql injection attack...

dronfelipe SQL注入漏洞

dronfelipe is a website by Kyle Bebak, an individual developer. A SQL injection vulnerability exists in dronfelipe. An attacker could exploit this vulnerability to perform a sql injection attack...

Lead Management System SQL注入漏洞

Lead management system is a lead management system by Mayuri K. Personal developer. SQL injection vulnerability exists in Lead Management System v1.0, which stems from the lack of validation of externally entered SQL statements in the id parameter of removeCategories.php. An attacker could use th...

Lead Management System SQL注入漏洞

Lead management system is a lead management system developed by Mayuri K. A SQL injection vulnerability exists in Lead Management System v1.0, which stems from the lack of validation of external input SQL statements in the id parameter of removeOrder.php, and can be exploited by attackers to The...

Lead Management System SQL注入漏洞

Lead management system is a lead management system developed by Mayuri K. The Lead Management System v1.0 version is vulnerable to SQL injection, which stems from the lack of validation of external input SQL statements in the userid parameter of changePassword.php. An attacker could use this...