WordPress appointment-booking-calendar plugin SQL injection vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. appointment-booking-calendar is an online appointment management plugin used in it. A SQL injection vulnerability exists in the...

WordPress gallery-photo-gallery plugin SQL injection vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL. gallery-photo-gallery is a responsive gallery plugin used in it. A SQL injection vulnerability exists in the WordPress...

S-CMS enterprise website builder system backend P_br*** parameter exists SQL injection vulnerability

S-CMS enterprise station building system is Zibo Shining Network Technology Co., Ltd. developed a specialized enterprise station building solutions for the product. There is a SQL injection vulnerability in the Pbr parameter in the background of S-CMS enterprise website building system. Attackers...

SQL Injection Vulnerability in Teaching Quality Assurance System of Shanghai Shangding Software Technology Co.

The Teaching Quality Assurance System is a closed-loop management system that adopts a new business architecture and process handling model for the planning and initiation, execution and implementation, analysis and feedback of various teaching quality activities. Shanghai Shangding Software...

FredReinink Wellness-app SQL Injection Vulnerability

FredReinink Wellness-app is a web-based fitness tracking application. A SQL injection vulnerability exists in versions of FredReinink Wellness-app prior to 2019-06-19, which can be exploited by an attacker to execute illegal SQL commands...

SQL Injection Vulnerability in We*** Interface of Shared Human Resource Management System

Dongguan City, the same share software technology limited company is a focus on manufacturing, commercial circulation, government departments, enterprises and institutions, such as management software research and development and service company. The We interface of Tongxiang Human Resources...

S-CMS Enterprise Website Builder System suffers from SQL Injection Vulnerability

S-CMS enterprise station building system is Zibo Shining Network Technology Co., Ltd. developed a specialized enterprise station building solutions for the product. S-CMS enterprise website builder system has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive...

IBM Emptoris Spend Analysis SQL Injection Vulnerability

IBM Emptoris Spend Analysis is a product within IBM's suite of procurement solutions for consolidating, cleansing and categorizing spend data from decentralized systems. A SQL injection vulnerability exists in IBM Emptoris Spend Analysis versions 10.1.0 through 10.1.3, which can be exploited by a...

WordPress i-recommend-this plugin SQL injection vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. i-recommend-this is a plugin used in it for liking and voting on a page. A SQL injection vulnerability exists in the WordPress...

Pangu Network Technology website builder system suffers from SQL injection vulnerability

Pangu Network is a regional service operator authorized by Baidu, a group of companies providing integrated network marketing services to customers in the region with Baidu's business as the core. A SQL injection vulnerability exists in Pangu Network Technology's website builder system, which can...

SQL Injection Vulnerability in Chemical CMS of Huaxia Chemical Net

Huaxia chemical network is by Shanghai Danfan network technology limited company founded, is for the chemical industry to provide security, high efficiency, multi-function, system supporting B2B electronic commerce platform of professional website. Huaxia chemical network chemical CMS exists SQL...

SQL Injection Vulnerability in Website Construction System of Shanghai Ming Enterprise Information Technology Co.

Shanghai Ming Enterprise Information Technology Co., Ltd. is a company engaged in website construction, Internet marketing, domain name hosting and Internet application development. There is a SQL injection vulnerability in the website construction system of Shanghai Ming Enterprise Information...

Zoho ManageEngine OpManager SQL Injection Vulnerability (CNVD-2019-34852)

Zoho ManageEngine OpManager is a suite of network, server and virtualization monitoring software from Zoho. A SQL injection vulnerability exists in Zoho ManageEngine OpManager. An attacker can exploit this vulnerability to execute illegal SQL commands...

SQL Injection Vulnerability in OE***.ashx Page of Nanjing Pintech Medical Online Exam System

Nanjing Pintech medical online examination system enables users to realize the organization and management of online examination work. SQL injection vulnerability exists in the OE.ashx page of Nanjing Pinde Technology Medical Online Examination System, which can be exploited by attackers to obtai...

cPanel SQL Injection Vulnerability (CNVD-2019-26168)

cPanel is a set of Web-based automated colocation platforms from the American company cPanel. The platform is primarily used to automate the management of websites and servers. A SQL injection vulnerability exists in cPanel versions prior to 74.0.0. The vulnerability stems from a lack of validati...

Django SQL Injection Vulnerability

Django is the Django Foundation's set of open source Web application framework based on the Python language . The framework includes object-oriented mapper , view system , template system and so on. Django has a SQL injection vulnerability that can be exploited by an attacker to execute SQL...

Nextcloud Android app SQL injection vulnerability

Nextcloud Android app is an Android-based mobile application from Nextcloud Germany for accessing Nextcloud servers. A SQL injection vulnerability exists in the Nextcloud Android app versions prior to 3.0.0. The vulnerability stems from a lack of validation of externally entered SQL statements in...

Apache VCL SQL Injection Vulnerability (CNVD-2019-25063)

Apache VCL is a set of open source cloud computing platform of the U.S. Apache Apache Software Foundation. A SQL injection vulnerability exists in Apache VCL versions 2.1 through 2.5. The vulnerability stems from a lack of validation of externally entered SQL statements in database-based...

SQL Injection Vulnerability in Business Management Platform System Da***.aspx

Shenzhen Consulting Micro Information Technology Co., Ltd. is a company engaged in the research and development of management software platform. SQL injection vulnerability exists in the business management platform system Da.aspx, which can be exploited by attackers to obtain sensitive informati...

Bypass Vulnerability in Website Security Dog's SQL Injection Blocking Feature

Security Dog is a comprehensive server security protection tool that integrates server security protection and security management. A bypass vulnerability exists in the SQL injection blocking feature of Website Security Dog. An attacker can bypass the SQL injection blocking feature of Website...