11 matches found
CVE-2025-6753
A vulnerability was found in huija bicycleSharingServer 1.0 and classified as critical. This issue affects the function selectAdminByNameLike of the file AdminController.java. The manipulation leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the publ...
CVE-2025-6749
A vulnerability classified as critical was found in huija bicycleSharingServer up to 7b8a3ba48ad618604abd4797d2e7cf3b5ac7625a. Affected by this vulnerability is the function searchAdminMessageShow of the file AdminController.java. The manipulation of the argument Title leads to sql injection. The...
CVE-2025-6753 huija bicycleSharingServer AdminController.java selectAdminByNameLike sql injection
A vulnerability was found in huija bicycleSharingServer 1.0 and classified as critical. This issue affects the function selectAdminByNameLike of the file AdminController.java. The manipulation leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the publ...
CVE-2025-6753
CVE-2025-6753 affects huija bicycleSharingServer 1.0, with a flaw in AdminController.java’s selectAdminByNameLike that enables SQL injection via a remote attack. Exploit maturity is shown as proof-of-concept and exploits have been disclosed publicly. Public details do not provide a patched versio...
CVE-2025-6749 huija bicycleSharingServer AdminController.java searchAdminMessageShow sql injection
A vulnerability classified as critical was found in huija bicycleSharingServer up to 7b8a3ba48ad618604abd4797d2e7cf3b5ac7625a. Affected by this vulnerability is the function searchAdminMessageShow of the file AdminController.java. The manipulation of the argument Title leads to sql injection. The...
CVE-2025-6749 huija bicycleSharingServer AdminController.java searchAdminMessageShow sql injection
A vulnerability classified as critical was found in huija bicycleSharingServer up to 7b8a3ba48ad618604abd4797d2e7cf3b5ac7625a. Affected by this vulnerability is the function searchAdminMessageShow of the file AdminController.java. The manipulation of the argument Title leads to sql injection. The...
PT-2025-27038 · Unknown · Huija Bicyclesharingserver
Name of the Vulnerable Software and Affected Versions: huija bicycleSharingServer affected versions not specified Description: A critical vulnerability was found in the huija bicycleSharingServer, affecting the searchAdminMessageShow function of the AdminController.java file. The manipulation of...
CVE-2024-13211 SingMR HouseRent AdminController.java access control
A vulnerability was found in SingMR HouseRent 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file src/main/java/com/house/wym/controller/AdminController.java. The manipulation leads to improper access controls. The attack may be launched remotely...
CVE-2018-11012
ruibaby Halo 0.0.2 has stored XSS via the loginName and loginPwd parameters in a failed login attempt to AdminController.java...
Cross site scripting
ruibaby Halo 0.0.2 has stored XSS via the loginName and loginPwd parameters in a failed login attempt to AdminController.java...
CVE-2018-11012
ruibaby Halo 0.0.2 has stored XSS via the loginName and loginPwd parameters in a failed login attempt to AdminController.java...