13 matches found
EUVD-2025-4716
Malicious code in bioql PyPI...
SQL Injection Vulnerability in 115CMS Backend Ad***.php File
115CMS is a content management system developed on ThinkPHP framework. A SQL injection vulnerability exists in the Ad.php file in the 115CMS backend. An attacker can exploit the vulnerability to obtain sensitive database information...
File inclusion vulnerability in WeiPHP Ad***.cl***.php file at Shenzhen Yuanmeng Cloud Technology Co.
WeiPHP is an open source WeChat public platform development framework, can easily build a personal WeChat public account operation platform. Shenzhen Yuanmeng Yun Technology Co., Ltd WeiPHP Ad.cl.php file file contains a file inclusion vulnerability, which can be exploited by an attacker to gain...
Uc365 navigation open source version of ad***.php file SQL injection vulnerability
Youkai 365 Web site navigation open source version is based on PHP + MYSQL development and construction of open source Web site catalog management system. Uke365 navigation open source version of ad.php file SQL injection vulnerability , attackers can use this vulnerability to obtain sensitive...
SQL Injection Vulnerability in Heybbs Micro Community ad***.php File
Heybbs micro-community is a front-end based on bootstrap + jq + css, back-end php + mysql development of micro-community program. A SQL injection vulnerability exists in the Heybbs Micro Community ad.php file. Attackers can use the vulnerability to obtain sensitive information in the database...
SQL injection vulnerability in beescm backend ad***_fl***.php file
BEESCMS is PHP+MYSQL architecture, multi-language system, easy to expand content modules, diversified template styles, simple and powerful template production, professional SEO optimization, easy to operate the background, fully meet the corporate website, foreign trade websites, institutions,...
SQL Injection Vulnerability in joyplus-cms ad***_vo***_to***.php File
joyplus-cms joy video is an open source video backend management system based on PHP and MySQL. The system has a video resource acquisition , user feedback management , automatic address resolution and message push management and other functions . joyplus-cms advoto.php file contains a SQL...
SQL Injection Vulnerability in Maxcms ad***_ne***.asp File
Maxcms is an open source program that serves to build movie websites. A SQL injection vulnerability exists in the Maxcms adne.asp file, which can be exploited by attackers to obtain sensitive information...
SQL injection vulnerability in ad***_jq***.php file de*** method in seacms backend
seacms ocean film and television management system, ocean cms is based on PHP + MySql technology development of video on demand system. seacms background adjq.php file de method there is a SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive information...
SQL injection vulnerability in ad***_ne***.php file re*** method in seacms backend
seacms ocean film and television management system, ocean cms is based on PHP + MySql technology development of video on demand system. seacms background adne.php file re method there is a SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive information...
CVE-2019-10262
A SQL Injection issue was discovered in BlueCMS 1.6. The variable $adid is spliced directly in uploads/admin/ad.php in the admin folder, and is not wrapped in single quotes, resulting in injection around the escape of magic quotes...
SQL Injection Vulnerability in PhpMywind ad***.php File
PHPMyWind is a PHP + MySQL based development of W3C standards-compliant site building engine . A SQL injection vulnerability exists in the PHPMyWind ad.php file. An attacker can exploit this vulnerability to obtain sensitive database information...
HJCMS enterprise website management system 7.0 injection vulnerability-vulnerability warning-the black bar safety net
Author:anon Vulnerability in /hjadmin/addj. asp !-- include file="../conn. asp"--%set js = server. CreateObject"ADODB. RecordSet"sql="select from ad where id="& request. QueryString"id"set js = conn. Execute Sqlif js"lx"=1 thengoaler = goaler + "a href=""adurl. asp? id="& js"id"&""" target="""&...