SQL Injection Vulnerability in the Templetid Parameter of Hopping Collaborative Content Management System

HZCMS is a website group content management system based on Java and XML technology. A SQL injection vulnerability exists in the templetid parameter of HZCMS. Attackers can use the vulnerability to obtain data information...

CVE-2016-5817

SQL injection vulnerability in news pages in Cargotec Navis WebAccess before 2016-08-10 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...

Moxa SoftCMS SQL Injection Vulnerability

Moxa SoftCMS is a centralized management software for type monitoring systems. Moxa SoftCMS suffers from a SQL injection vulnerability that could be exploited by remote attackers to submit specially crafted SQL queries to manipulate or obtain database data...

SQL Injection Vulnerability in Video Conferencing System of Tangqiao Technology (Hangzhou) Co.

Video conferencing system is a remote collaborative video software, a kind of cloud conference system developed by Tangqiao Technology Hangzhou Co. The product suffers from an SQL injection vulnerability, which can be exploited by attackers to obtain database data...

Multiple vulnerabilities in the Joomla! Huge-IT Image Gallery extension (CNVD-2016-05734)

Joomla! is the U.S. Open Source Matters team developed a set of open source content management system CMS, the system provides RSS feeds , site search and other features . Huge-IT Image Gallery is one of the image gallery extension plug-ins . A SQL injection vulnerability and a cross-site scripti...

mysql: unspecified vulnerability in subcomponent: Server: DML (CPU January 2016)

Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect availability via vectors related to DML...

Misys FusionCapital Opics Plus SQL Injection Vulnerability

Misys FusionCapital Opics Plus is an end-to-end scalable money business solution for the financial industry from Misys UK. The solution provides IAS-compliant accounting structures, foreign exchange tools and client-facing e-banking capabilities. An SQL injection vulnerability exists in Misys...

SQL Injection Vulnerability in Remote DBMail Mail Server

DBMail is a database-enabled enterprise mail system developed by TeleSoft. A SQL injection vulnerability exists in Telezine DBMail Mail Server V5.0 updated 2016.07.08. The vulnerability is allowed to be exploited by an attacker to gain access to sensitive database information...

SQL Injection Vulnerability in Uni Call Calling System

Uni Call Customer Service Edition is a professional software application platform designed for inbound customer service centers. A SQL injection vulnerability exists in the Uni Call call system. The lack of filtering of the /uncalllib/index.php parameter allows attackers to exploit the...

SQL Injection Vulnerability in Agricultural Internet of Things Sensing Platform System

Agricultural IoT sensing platform system is an industrial control system. An SQL injection vulnerability exists in the Agricultural Internet of Things Sensing Platform System, which can be exploited by attackers to obtain sensitive information from the database...

SQL Injection Vulnerability in Shanghai Yongcan CMS

Shanghai Yongcan CMS is a website building system for major enterprises, schools and social organizations. Shanghai Yongcan CMS suffers from SQL injection vulnerability, through which an attacker can obtain database information, resulting in the leakage of sensitive information...

SQL Injection Vulnerability in EMN Intelligent Network Management System

EMN Intelligent Network Management System is a DNS service system composed of a set of industrial control hardware devices and an embedded DNS software system. EMN Intelligent Network Management System suffers from SQL injection vulnerability. It allows attackers to utilize commonly used SQL...

Rexroth Bosch BLADEcontrol-WebVIS SQL Injection Vulnerability

Rexroth Bosch BLADEcontrol is a web-based HMI system. Rexroth Bosch BLADEcontrol has a SQL injection vulnerability in database operations that could lead to control of the database server or remote code execution...

Generalized SQL Injection Vulnerability in Agricultural Network of Wuhan Joseph Xin Sun Agricultural Network Co.

Wuhan Joseph Xin Sun Agricultural Network Co., Ltd. is mainly engaged in computer network information software research and development, electronic complete sets of equipment research and development; business information consulting; business information consulting; sales of primary agricultural...

Generalized SQL Injection Vulnerability in Hubei Province Urban Construction Information Network

Hubei construction engineering information network is Hubei construction engineering information industry first portal official station. The Hubei Urban Construction Information Network suffers from a generic SQL injection vulnerability. It allows attackers to utilize common SQL injection tools t...

Generalized SQL Injection Vulnerability in Flow Control Routing of CoQin Technology

Since its inception over 15 years ago, Co-Tech has evolved from a manufacturer of high-end modems to a strong competitor in the broadband solutions space. A generalized SQL injection vulnerability exists in the flow control routing of Welkin Technologies. It allows attackers to utilize commonly...

Cumulative update for Windows 10: June 14, 2016

Cumulative update for Windows 10: June 14, 2016 Summary This security update includes improvements and fixes in the functionality of Windows 10. It also resolves the following vulnerabilities in Windows: 3163649 MS16-063: Cumulative security update for Internet Explorer: June 14, 2016 3163656...

Cumulative Update for Windows 10 version 1511 and Windows Server 2016 Technical Preview 4: June 14, 2016

Cumulative Update for Windows 10 version 1511 and Windows Server 2016 Technical Preview 4: June 14, 2016 Summary This security update includes improvements and fixes in the functionality of Windows 10 Version 1511 and Windows Server 2016 Technical Preview 4, and resolves the following...

SQL Injection Vulnerability in CIMCO DSS-MAX Decision Support System

CIMCO is the world's largest installed base of DNC systems, mainly used for networking communication of CNC machine tools, machine monitoring, etc. CIMCO DSS-Max Server is a DNC/MDC decision support service software, through which you can easily manage the DNC/MDC database. SQL injection...

SQL Injection Vulnerability in China Shipping Container Lines Shanghai Co.

China Shipping Container Lines Shanghai Co., Ltd. is a professional agent company integrating international and domestic container solicitation, shipping agency and container agency. China Shipping Container Electronic Picking System is a set of transportation enterprise product order system. A S...