6204 matches found
Orpak SitOmat SQL Injection Vulnerability
Orpak SitOmat is a remote takeover refueling system from Orpak India. A SQL injection vulnerability exists in Orpak SitOmat, which can be exploited by remote attackers to execute SQL commands...
doorGets SQL Injection Vulnerability (CNVD-2019-13802)
DoorGets is a free and open source content management system. A SQL injection vulnerability exists in /doorgets/app/requests/user/modulecategoryRequest.php in doorGets 7.0. This vulnerability can be exploited by a user with remote backend administrator privileges or a user with manage...
doorGets SQL Injection Vulnerability (CNVD-2019-26507)
doorGets is a content management system CMS. The system supports multiple languages, and system backups and theme changes, etc. A SQL injection vulnerability exists in doorGets version 7.0, which can be exploited by attackers to execute illegal SQL commands...
doorGets SQL Injection Vulnerability (CNVD-2019-26504)
doorGets is a content management system CMS. The system supports multiple languages, and system backups and theme changes, etc. A SQL injection vulnerability exists in doorGets version 7.0, which can be exploited by attackers to execute illegal SQL commands...
SQL Injection Vulnerability in phpshe v1.7 (CNVD-2019-12520)
PHPSHE mall system is a combination of product display, online shopping, order management, payment management, article management, customer consultation feedback and other functions, providing users with online shopping mall construction program. phpshe v1.7 version of the existence of SQL...
SQL injection vulnerability in the ch***.asp file of the enterprise website management system of Dynamic Science (CNVD-2019-13589)
Dynamic enterprise website management system is an asp + access for the development of enterprise website source code. There is a SQL injection vulnerability in the ch.asp file. An attacker can exploit the vulnerability to obtain sensitive information from the database...
SQL injection vulnerability in ch***.asp file of Dynamic Sciences enterprise website management system
Dynamic enterprise website management system is an asp + access for the development of enterprise website source code. There is a SQL injection vulnerability in the ch.asp file. An attacker can exploit the vulnerability to obtain sensitive information from the database...
SQL Injection Vulnerability in Website Building System of Ningbo Mufeng Network Technology Co.
Ningbo Mufeng Network Technology Co., Ltd. is a website design company with the core business of website construction, website production, website development, graphic design and corporate branding in Ningbo. There is a SQL injection vulnerability in the website building system of Ningbo Mufeng...
Magento SQL Injection Vulnerability
Magento is an open source PHP e-commerce system of the United States Magento company . The system provides rights management , search engine and payment gateway and other functions. A SQL injection vulnerability exists in Magento, which stems from a lack of validation of externally entered SQL...
Heilongjiang Yitong Network Technology Development Co., Ltd. website building system has SQL injection vulnerability
Heilongjiang Yitong Network Technology Development Co., Ltd. is an enterprise website building system. There is a SQL injection vulnerability in Heilongjiang Yitong Network Technology Development Co., Ltd. that can be exploited by attackers to obtain sensitive information from the database...
MKCMS SQL Injection Vulnerability
MKCMS is a content management system. A SQL injection vulnerability exists in MKCMS version V5.0. The vulnerability stems from a lack of validation of externally entered SQL statements in database-based applications. An attacker can exploit this vulnerability to execute illegal SQL commands...
UBUNTU-CVE-2018-20505
SQLite 3.25.2, when queries are run on a table with a malformed PRIMARY KEY, allows remote attackers to cause a denial of service application crash by leveraging the ability to run arbitrary SQL statements such as in certain WebSQL use cases...
CVE-2019-10707
MKCMS V5.0 has SQL injection via the bplay.php play parameter...
Domoticz SQL Injection Vulnerability
Domoticz is an open source smart home system. The system supports monitoring and controlling a wide range of smart home devices. A SQL injection vulnerability exists in Domoticz versions prior to 4.10578, which stems from a lack of validation of externally entered SQL statements in database-based...
CVE-2019-9053
An issue was discovered in CMS Made Simple 2.2.8. It is possible with the News module, through a crafted URL, to achieve unauthenticated blind time-based SQL injection via the m1idlist parameter...
SQL Injection Vulnerability in Leer's Resource Platform
Founded in 2008, Aotong Dalian Technology Development Co., Ltd. is an educational brand engaged in the research and development of original children's digital resources. A SQL injection vulnerability exists in the Le'er Resource Platform, which can be exploited by an attacker to obtain sensitive...
SQL Injection Vulnerability in NetSoft Zhicheng Classifieds Website System
NetSoft Zhicheng classifieds website system is a php mysql based website building system. Netsoft Zhicheng classifieds website system has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information in the database...
SQL Injection Vulnerability in the jdo*** Component jdo*** Module of joomla!
joomla! is an open source content management system CMS. A SQL injection vulnerability exists in the jdo module of the joomla! jdo component. The vulnerability allows attackers to obtain sensitive information about the database...
Hsycms v1.1 suffers from SQL Injection Vulnerability
Hsycms is an enterprise-level web content management system, written by PHP+MYSQL, using template separation technology to support the creation of many types of sites. Hsycms v1.1 suffers from a SQL injection vulnerability. An attacker can exploit the vulnerability to obtain sensitive database...
SQL Injection Vulnerability in 74cms in***.php Page
Knight Talent System 74cms is a talent recruitment system based on PHP+MYSQL. A SQL injection vulnerability exists in the 74cms in.php page, which can be exploited by attackers to obtain sensitive information...