The vulnerability of the PI Server database management system allows a hacker to circumvent restrictions on executing SQL commands.

The vulnerability of the PI Server database management system is related to the lack of protection for SQL query structures. Exploiting this vulnerability allows a malicious actor to bypass restrictions on the execution of SQL commands by adding the account to the Trusted Users group and excludin...

SQL Injection Vulnerability in EMN Intelligent Network Management System

EMN Intelligent Network Management System is a DNS service system composed of a set of industrial control hardware devices and an embedded DNS software system. EMN Intelligent Network Management System suffers from SQL injection vulnerability. It allows attackers to utilize commonly used SQL...

The vulnerability of the Security SiteProtector System’s security protection mechanism allows a hacker to execute arbitrary SQL commands.

The vulnerability of the Security SiteProtector System security system lies in the lack of protection for SQL query structures. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL commands remotely...

The vulnerability of the Simatic WinCC software allows a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The implementation of SQL code on the Web Navigator system’s input screen allows malicious actors operating remotely to execute arbitrary SQL commands...

The vulnerability of the Simatic PCS 7 software allows a remote attacker to compromise the confidentiality, integrity, and accessibility of the protected information.

The implementation of SQL code on the Web Navigator system’s input screen allows malicious actors operating remotely to execute arbitrary SQL commands...

Rexroth Bosch BLADEcontrol-WebVIS SQL Injection Vulnerability

Rexroth Bosch BLADEcontrol is a web-based HMI system. Rexroth Bosch BLADEcontrol has a SQL injection vulnerability in database operations that could lead to control of the database server or remote code execution...

Generalized SQL Injection Vulnerability in Agricultural Network of Wuhan Joseph Xin Sun Agricultural Network Co.

Wuhan Joseph Xin Sun Agricultural Network Co., Ltd. is mainly engaged in computer network information software research and development, electronic complete sets of equipment research and development; business information consulting; business information consulting; sales of primary agricultural...

Generalized SQL Injection Vulnerability in Hubei Province Urban Construction Information Network

Hubei construction engineering information network is Hubei construction engineering information industry first portal official station. The Hubei Urban Construction Information Network suffers from a generic SQL injection vulnerability. It allows attackers to utilize common SQL injection tools t...

Generalized SQL Injection Vulnerability in Flow Control Routing of CoQin Technology

Since its inception over 15 years ago, Co-Tech has evolved from a manufacturer of high-end modems to a strong competitor in the broadband solutions space. A generalized SQL injection vulnerability exists in the flow control routing of Welkin Technologies. It allows attackers to utilize commonly...

Cumulative update for Windows 10: June 14, 2016

Cumulative update for Windows 10: June 14, 2016 Summary This security update includes improvements and fixes in the functionality of Windows 10. It also resolves the following vulnerabilities in Windows: 3163649 MS16-063: Cumulative security update for Internet Explorer: June 14, 2016 3163656...

Cumulative Update for Windows 10 version 1511 and Windows Server 2016 Technical Preview 4: June 14, 2016

Cumulative Update for Windows 10 version 1511 and Windows Server 2016 Technical Preview 4: June 14, 2016 Summary This security update includes improvements and fixes in the functionality of Windows 10 Version 1511 and Windows Server 2016 Technical Preview 4, and resolves the following...

SQL Injection Vulnerability in CIMCO DSS-MAX Decision Support System

CIMCO is the world's largest installed base of DNC systems, mainly used for networking communication of CNC machine tools, machine monitoring, etc. CIMCO DSS-Max Server is a DNC/MDC decision support service software, through which you can easily manage the DNC/MDC database. SQL injection...

SQL Injection Vulnerability in China Shipping Container Lines Shanghai Co.

China Shipping Container Lines Shanghai Co., Ltd. is a professional agent company integrating international and domestic container solicitation, shipping agency and container agency. China Shipping Container Electronic Picking System is a set of transportation enterprise product order system. A S...

SQL injection vulnerability in the newss.htm?classID= parameter of the distance education platform of Shenzhen Tengchuang Network Technology Co.

Tengchuang Internet Distance Education Platform is an online knowledge trading platform centered on real-time interactive online classroom, combining powerful functions such as courseware on-demand, course transaction, online payment, and online examination, etc. for students and teachers in...

SQL Injection Vulnerability in Communication Application Server username Parameter of Shenou Communication Equipment Co.

Shenou Communication Equipment Co., Ltd. is a national non-regional enterprise integrating R&D, production, sales and service. Communication Application Server SOC1000 model products are softswitch servers for IP networks, supporting voice, fax and video at the same time. Shenou Communication...

SQL injection vulnerability in the coursewares.htm?recommend= parameter of the distance learning platform of Shenzhen Tengchuang Network Technology Co.

Tengchuang Internet Distance Education Platform is an online knowledge trading platform centered on real-time interactive online classroom, combining powerful functions such as courseware on-demand, course transaction, online payment, and online examination, etc. for students and teachers in...

Apache Ranger SQL Injection Vulnerability

Apache Ranger is a set of architectures for implementing comprehensive security measures for Hadoop clusters, providing centralized security policy management for core enterprise security requirements such as authorization, billing and data protection. Apache Ranger suffers from a SQL injection...

Linknat SQL Injection Vulnerability

Linknat suffers from a SQL injection vulnerability. An attacker is able to execute malicious sql commands to connect to dbms...

Patron Info System SQL Injection Vulnerability

Patron Info System is a customer information system. Patron Info System has a remote sql injection vulnerability that allows remote attackers to execute malicious sql commands to connect to dbms...

IBM Marketing Platform SQL Injection Vulnerability (CNVD-2016-03333)

IBM Marketing Platform is a suite of marketing platforms from IBM in the United States. The platform supports marketers in leveraging and analyzing customer interactions on websites, cell phones and social media to deliver targeted marketing campaigns to customers. A SQL injection vulnerability...