Component vWishlist SQL Injection Vulnerability in Joomla!

Joomla! is an open source content management system CMS. A SQL injection vulnerability exists in the Joomla! component vWishlist. An attacker can exploit the vulnerability to obtain sensitive database information...

S-CMS Chinese/English Bilingual Decoration Industry Website v3.0 po***.asp page suffers from SQL injection vulnerability

S-CMS Chinese and English bilingual decoration industry website is developed with asp+access, comes with a set of PC templates and a set of WAP templates of Chinese and English bilingual enterprise website system. S-CMS bilingual decoration industry website v3.0po.asp page SQL injection...

LmxCMS V1.4 SQL Injection Vulnerability in Frontend Ta***.cl***.php

Dream Cms, hereinafter referred to as "lmxcms", is a simple and practical website management system cms developed by "10 years" screen name. A SQL injection vulnerability exists in LmxCMS V1.4 frontend Ta.cl.php. An attacker can exploit the vulnerability to obtain sensitive database information...

SQL Injection Vulnerability in Smart Meter Collective Reading Management System Lo***.aspx Page

Qingdao Automatic Instrumentation Co., Ltd. is a new joint-stock enterprise integrating R&D and manufacturing. There is a SQL injection vulnerability in the Lo.aspx page of the Intelligent Instrumentation Collector Management System, which can be exploited by attackers to obtain sensitive...

i-doit CMDB SQL Injection Vulnerability

i-doIT is a CMDB Configuration Management Database based on ITIL technology. An SQL injection vulnerability exists in i-doit CMDB. An attacker can exploit the vulnerability to obtain sensitive database information...

Fortnite Flaws Allowed Hackers to Takeover Gamers' Accounts

Check Point researchers have discovered multiple security vulnerabilities in Fortnite, a massively popular online battle game, one of which could have allowed remote attackers to completely takeover player accounts just by tricking users into clicking an unsuspectable link. The reported Fortnite...

SQL Injection Vulnerability in Ruihe Software Enterprise Management Information System v5.0EA***.aspx Page

Beijing Ruihe Hengtai Technology Co., Ltd. is a high-tech and double-soft certified enterprise specializing in the distribution, implementation service and technical service of all kinds of tool software, system software and database software as well as system development. Ruihe Software Enterpri...

UsualToolCMS Cross-Site Request Forgery Vulnerability

UsualToolCMS UTCMS is an enterprise web content management system CMS based on PHP and MySQL. A security vulnerability exists in cmsadmin/asqlbackx.php?t=sql in UTCMS version 8.0. An attacker can exploit this vulnerability to execute SQL statements and execute arbitrary PHP code...

SQL Injection Vulnerability in DeepView V3.0ab***.asp Page

SZYT is a website building system developed by SZYT Group Ltd. SQL injection vulnerability exists in SZYT V3.0ab.asp page, which can be exploited by attackers to obtain sensitive information from the database...

SQL Injection Vulnerability in Zoneminder rs***.php File

Zoneminder is an open source video surveillance system. A SQL injection vulnerability exists in the Zoneminder rs.php file. An attacker can exploit the vulnerability to obtain sensitive database information...

Xi'an Bailian website builder system has SQL injection vulnerability

Xi'an BaiLian Network Technology Co., Ltd. is the first technology company specializing in bearing industry management software development and bearing industry portal design. Xi'an BaiLian website building system has a SQL injection vulnerability, which can be exploited by attackers to obtain...

SQL Injection Vulnerability in the Community Corrections System of the Department of Justice

China Mobile Communications Corporation hereinafter referred to as "China Mobile" is a centralized enterprise established in 2000 in accordance with the overall deployment of the national telecommunications system reform. A SQL injection vulnerability exists in the community correction system of...

SQL Injection Vulnerability in File System Profile Frontend ge***.aspx Page

The filing system Profile is an in-house employee management software. A SQL injection vulnerability exists in the front-end ge.aspx page of File System Profile, which can be exploited by attackers to obtain sensitive information from the database...

S-CMS SQL Injection Vulnerability (CNVD-2018-26679)

S-CMS is a content management system CMS based on PHP and MySQL. A SQL injection vulnerability exists in S-CMS version 1.0, which can be exploited by remote attackers to execute SQL commands by sending the 'Sid' parameter to the wapindex.php?type=newsinfo URL...

SQL Injection Vulnerability in File System Profile Frontend Bi***.ashx Page

The filing system Profile is an in-house employee management software. A SQL injection vulnerability exists in the frontend Bi.ashx page of File System Profile, which can be exploited by attackers to obtain sensitive information from the database...

SQL Injection Vulnerability in Purchase Frontend ge***.aspx Page of Purchase System

Purchase system Purchase is a purchasing management system features include: product requisitioning, warehousing, inventory counts, data reports and more. A SQL injection vulnerability exists in the front-end ge.aspx page of Purchase, which can be exploited by attackers to obtain sensitive...

Zzzphp V1.5.9 SQL Injection Vulnerability in Background sa***.php File

zzphp is a free website building system developed using PHP. Zzzphp V1.5.9 SQL injection vulnerability exists in the background sa.php file, which can be exploited by attackers to obtain sensitive information from the database...

SQL Injection Vulnerability in PHPMyWind si***_up***.php File

PHPMyWind is a PHP + MySQL based development of W3C standards-compliant site building engine . A SQL injection vulnerability exists in the PHPMyWind siup.php file. An attacker can exploit this vulnerability to obtain sensitive database information...

SQL Injection Vulnerability in PHPMyWind na***_up***.php File

PHPMyWind is a PHP + MySQL based development of W3C standards-compliant site building engine . A SQL injection vulnerability exists in the PHPMyWind naup.php file. An attacker can exploit this vulnerability to obtain sensitive database information...

SQL Injection Vulnerability in PbootCMS Backend

PbootCMS is a new core open source enterprise building system developed by Avantech. There is a SQL injection vulnerability in PbootCMS backend. Attackers can use this vulnerability to obtain sensitive information in the database...