Lucene search
K

7 matches found

OSV
OSV
added 2022/01/15 3:17 p.m.3 views

CVE-2022-23178

An issue was discovered on Crestron HD-MD4X2-4K-E 1.0.0.2159 devices. When the administrative web interface of the HDMI switcher is accessed unauthenticated, user credentials are disclosed that are valid to authenticate to the web interface. Specifically, aj.html sends a JSON document with uname...

9.8CVSS5.8AI score0.75711EPSS
Exploits5References1
CNVD
CNVD
added 2019/10/29 12:0 a.m.1 views

SQL injection vulnerability in UQCMS aj***.php page (CNVD-2019-43616)

UQCMS cloud business system is a B2B2C e-commerce software that the program uses PHP+MYSQL and the template uses smarty template. A SQL injection vulnerability exists in the UQCMS aj.php page, which can be exploited by attackers to obtain sensitive information from the database...

7.7AI score
Exploits0
CNVD
CNVD
added 2019/09/10 12:0 a.m.1 views

S-CM e-commerce system aj***.php page P_sort parameter SQL injection vulnerability

S-CMS e-commerce system is an e-commerce software. S-CM e-commerce system aj.php page Psort parameter SQL injection vulnerability, an attacker can use the vulnerability to obtain sensitive information...

7.9AI score
Exploits0
CNVD
CNVD
added 2019/09/05 12:0 a.m.1 views

S-CMS php version hospital website building system v1.0 SQL injection vulnerability in background aj***.php page (CNVD-2019-32865)

S-CMS php version hospital website building system is a PHP based website building system. S-CMS php version hospital website builder system v1.0 has a SQL injection vulnerability in the background aj.php page, which can be exploited by attackers to obtain sensitive information from the database...

7.7AI score
Exploits0
CNVD
CNVD
added 2019/08/29 12:0 a.m.2 views

S-CMS php version government website builder system backend aj***.php page has SQL injection vulnerability

S-CMS is a content management system CMS based on PHP and MySQL. A SQL injection vulnerability exists in the background aj.php page of the S-CMS php version of the government website building system, which can be exploited by attackers to obtain sensitive database data...

7.9AI score
Exploits0
CNVD
CNVD
added 2019/08/28 12:0 a.m.2 views

SQL injection vulnerability in the L_sort parameter of the aj***.php page of the S-CMS school website builder system

S-CMS school station building system is Zibo Shining Network Technology Co., Ltd. developed a specialized enterprise station building solutions for the product. S-CMS school site building system aj.php page Lsort parameter there is a SQL injection vulnerability, an attacker can use the...

7.8AI score
Exploits0
CNVD
CNVD
added 2019/08/28 12:0 a.m.3 views

SQL injection vulnerability in the S_show parameter of the aj***.php page of the S-CMS school website builder system

S-CMS school station building system is Zibo Shining Network Technology Co., Ltd. developed a specialized enterprise station building solutions for the product. S-CMS school website builder system aj.php page Sshow parameter SQL injection vulnerability, an attacker can use the vulnerability to...

7.8AI score
Exploits0
Rows per page
Query Builder