5860 matches found
SQL Injection Vulnerability in CIMCO DSS-MAX Decision Support System
CIMCO is the world's largest installed base of DNC systems, mainly used for networking communication of CNC machine tools, machine monitoring, etc. CIMCO DSS-Max Server is a DNC/MDC decision support service software, through which you can easily manage the DNC/MDC database. SQL injection...
SQL Injection Vulnerability in China Shipping Container Lines Shanghai Co.
China Shipping Container Lines Shanghai Co., Ltd. is a professional agent company integrating international and domestic container solicitation, shipping agency and container agency. China Shipping Container Electronic Picking System is a set of transportation enterprise product order system. A S...
SQL injection vulnerability in the newss.htm?classID= parameter of the distance education platform of Shenzhen Tengchuang Network Technology Co.
Tengchuang Internet Distance Education Platform is an online knowledge trading platform centered on real-time interactive online classroom, combining powerful functions such as courseware on-demand, course transaction, online payment, and online examination, etc. for students and teachers in...
SQL injection vulnerability in the coursewares.htm?recommend= parameter of the distance learning platform of Shenzhen Tengchuang Network Technology Co.
Tengchuang Internet Distance Education Platform is an online knowledge trading platform centered on real-time interactive online classroom, combining powerful functions such as courseware on-demand, course transaction, online payment, and online examination, etc. for students and teachers in...
SQL Injection Vulnerability in Communication Application Server username Parameter of Shenou Communication Equipment Co.
Shenou Communication Equipment Co., Ltd. is a national non-regional enterprise integrating R&D, production, sales and service. Communication Application Server SOC1000 model products are softswitch servers for IP networks, supporting voice, fax and video at the same time. Shenou Communication...
Apache Ranger SQL Injection Vulnerability
Apache Ranger is a set of architectures for implementing comprehensive security measures for Hadoop clusters, providing centralized security policy management for core enterprise security requirements such as authorization, billing and data protection. Apache Ranger suffers from a SQL injection...
Linknat SQL Injection Vulnerability
Linknat suffers from a SQL injection vulnerability. An attacker is able to execute malicious sql commands to connect to dbms...
Patron Info System SQL Injection Vulnerability
Patron Info System is a customer information system. Patron Info System has a remote sql injection vulnerability that allows remote attackers to execute malicious sql commands to connect to dbms...
Admin panel UliCMS SQL Injection Vulnerability
UliCMS is a web content management solution. A SQL code injection exists due to the "countryblacklist" variable of the page "action=spamfilter". An attacker can exploit the vulnerability to execute database code...
Cisco Cloud Network Automation Provisioner SQL Injection Vulnerability
Cisco Cloud Network Automation Provisioner is a suite of cloud network automation provisioning software. A SQL injection vulnerability exists in Cisco Cloud Network Automation Provisioner, which allows remote attackers to exploit the vulnerability by submitting specially crafted SQL queries to...
biweb SQL Injection Vulnerability
BIWEB Business Intelligence Website System is a website system relying on ArthurXF enterprise application-level PHP development framework, developed and designed by the Shanghai NetWorks Network Information Co., Ltd. is a rapid development, simple and easy to use object-oriented enterprise...
Cacti graph_view.php SQL Injection Vulnerability
Cacti is a suite of open source network traffic monitoring and analysis tools from the Cacti Group. A SQL injection vulnerability in Cacti graphview.php allows attackers to exploit the vulnerability to execute arbitrary SQL commands...
BlackBerry Enterprise Service Management Console SQL Injection Vulnerability
BlackBerry Enterprise Service is a next-generation mobile device management platform. A SQL injection vulnerability exists in the Management Console component of BlackBerry Enterprise Service, which could be exploited by remote attackers to submit specially crafted SQL queries to manipulate or...
SQL Injection Vulnerability in ntao website builder system
ntao website builder is a self-service website builder system. The product suffers from a sql injection vulnerability, which can be exploited by an attacker to obtain sensitive database information...
DotCMS SQL Injection Vulnerability
DotCMS is a content management system CMS from the American company DotCMS. The system supports RSS feeds , blogs , forums and other modules , and is easy to extend and build features . A SQL injection vulnerability exists in DotCMS version 3.3, which originates from the...
Vwins SQL Injection Vulnerability
vwins is an open source WeChat public , WeChat enterprise and pay as you go service window management system . Vwins has a SQL injection vulnerability, attackers can use the vulnerability to obtain database information, constituting a sensitive information leakage...
Flying Fox Link File System SQL Injection Vulnerability
Flying Fox Link File System is a file management system. Flying Fox Link File System suffers from a SQL injection vulnerability, which can be exploited by an attacker to obtain database information, resulting in the disclosure of sensitive information...
SQL Injection Vulnerability in Shandong Wave Government In-use System/view/chufajieguochaxun.aspx Page
Shandong Wave government in use administrative service system is a comprehensive administrative service system integrating information and consultation, approval and charge, management and coordination, complaint and supervision. A SQL injection vulnerability exists in the...
The vulnerability of the Cisco Unified Communications Manager system allows a perpetrator to execute arbitrary SQL commands.
The vulnerability of the Cisco Unified Communications Manager IP telephony management system is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL commands using a specially crafted URL...
The vulnerability of the SAP NetWeaver software integration platform allows a hacker to execute arbitrary SQL commands.
The vulnerability of the UDDI server component of the SAP NetWeaver software integration platform is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL commands remotely...