SQL Injection Vulnerability in SemCMS SE***_Pr***.php File

SemCMS is a set of open source foreign trade enterprise website management system, written in php language, can be run under window or linux system. SemCMS SEPr.php file has a SQL injection vulnerability. Attackers can use the vulnerability to obtain sensitive information in the database...

SQL Injection Vulnerability in SemCMS SE***_Qu***.php File

SemCMS is a set of open source foreign trade enterprise website management system, written in php language, can be run under window or linux system. SemCMS SEQu.php file has a SQL injection vulnerability. An attacker can exploit the vulnerability to obtain sensitive information in the database...

SQL Injection Vulnerability in Feitian Download System

Flying download system FTDMS is the use of template engine caching technology development of a set of information or resource management system, the system uses the original ecological code structure, did not introduce any framework. A SQL injection vulnerability exists in FTDMS. An attacker can...

SQL Injection Vulnerability in SemCMS SE***_Do***.php File

SemCMS is a set of open source foreign trade enterprise website management system, written in php language, can be run under window or linux system. SemCMS SEDo.php file SQL injection vulnerability. Attackers can use the vulnerability to obtain sensitive information in the database...

SQL injection vulnerability in uqcms cloud commerce system (CNVD-2020-18781)

uqcms is a lightweight shopping software, light application, light deployment, multiple clients with different presentations.PHP+MySql easy to build, Smarty template tags, two open more convenient. Can be used for free for business. SQL injection vulnerability exists in uqcms cloud commerce syste...

MyuCMS open source content management system In***.php file SQL injection vulnerability

MyuCMS open source content management system developed using ThinkPHP community mall aggregation, plug-ins, templates, lightweight and fast easy to expand. MyuCMS open source content management system In.php file SQL injection vulnerability . Attackers can exploit the vulnerability to obtain...

PT-2020-1843 · Abb · Abb Esoms

Name of the Vulnerable Software and Affected Versions: ABB eSOMS versions 3.9 to 6.0.3 Description: The issue is related to a lack of input checks for SQL queries, which might allow an attacker to perform SQL injection attacks against the backend database. This could potentially be exploited by a...

Progress Software MOVEit Transfer SQL Injection Vulnerability (CNVD-2020-19007)

Progress Software MOVEit Transfer is a suite of file transfer software from Progress Software, USA. A SQL injection vulnerability in the REST API in Progress Software MOVEit Transfer version 2019.1 before 2019.1.4 and version 2019.2 before 2019.2.1 can be exploited by an attacker to access the...

SQL Injection Vulnerability in UQCMS B2B2C E-commerce System

UQCMS is a lightweight shopping software, light application, light deployment, multiple clients with different presentations.PHP+MySql easy to build, Smarty template tags, two open more convenient. Can be used for free for business. UQCMS B2B2C e-commerce system suffers from a SQL injection...

Multiple SQL Injection Vulnerabilities in SuiteCRM

SuiteCRM is a free and open source customer relationship management application. Multiple SQL injection vulnerabilities exist in SuiteCRM. An attacker could exploit to obtain sensitive information...

SQL Injection Vulnerability in Liangjing Mall Online Shop Shopping System

Liangjing Mall online store shopping system is a set of multi-functional online store system that can fit different types of commodities, super flexible, three-tier distribution PC+mobile+micro-site, which provides a complete online store solution. There is a SQL injection vulnerability in...

CVE-2020-3934

TAIWAN SECOM CO., LTD., a Door Access Control and Personnel Attendance Management system, contains a vulnerability of Pre-auth SQL Injection, allowing attackers to inject a specific SQL command...

Jobberbase SQL Injection Vulnerability (CNVD-2020-04571)

Jobberbase is an open source platform for building job search websites. A SQL injection vulnerability exists in Jobberbase. The vulnerability stems from a lack of validation of externally entered SQL statements in the database-based application. An attacker can exploit this vulnerability to execu...

PT-2020-1616 · Microsoft · Sql Server Reporting Services +1

Name of the Vulnerable Software and Affected Versions: Microsoft SQL Server Reporting Services versions 2012 through 2016 Description: A remote code execution issue exists in Microsoft SQL Server Reporting Services when it incorrectly handles page requests. This could allow an attacker to execute...

CVE-2020-3937

SQL Injection in SysJust Syuan-Gu-Da-Shih, versions before 20191223, allowing attackers to perform unwanted SQL queries and access arbitrary file in the database...

Plone DTML SQL Injection

Plone is free and open source content management system. Plone DTML suffers from SQL injection, which can be exploited by remote attackers to submit a special SQL request to manipulate the database, which can obtain sensitive information or execute arbitrary code...

CVE-2019-12619

A vulnerability in the web interface for Cisco SD-WAN Solution vManage could allow an authenticated, remote attacker to impact the integrity of an affected system by executing arbitrary SQL queries. The vulnerability is due to insufficient validation of user-supplied input. An attacker could...

Cisco SD-WAN Solution SQL Injection Vulnerability

Cisco SD-WAN Solution is a suite of network extension solutions from Cisco, of which vManage is the console. An SQL injection vulnerability exists in the web interface of Cisco SD-WAN Solution vManage. The vulnerability stems from insufficient validation of user-supplied input. A remote...

Cisco SD-WAN Solution SQL Injection Vulnerability (CNVD-2020-04036)

Cisco SD-WAN Solution is a suite of network extension solutions from Cisco, of which vManage is the console. An SQL injection vulnerability exists in the web interface of Cisco SD-WAN Solution vManage. The vulnerability stems from insufficient validation of user-supplied input. An attacker could...

SQL injection vulnerability exists in us***.php page of Xi'an Bailian Network Technology Co.

Xi'an BaiLian Network Technology Co., Ltd. is the first technology company specializing in bearing industry management software development and bearing industry portal design. SQL injection vulnerability exists in the us.php page of the website building system of Xi'an Bailian Network Technology...