7 matches found
CVE-2022-23178
An issue was discovered on Crestron HD-MD4X2-4K-E 1.0.0.2159 devices. When the administrative web interface of the HDMI switcher is accessed unauthenticated, user credentials are disclosed that are valid to authenticate to the web interface. Specifically, aj.html sends a JSON document with uname...
SQL injection vulnerability in UQCMS aj***.php page (CNVD-2019-43616)
UQCMS cloud business system is a B2B2C e-commerce software that the program uses PHP+MYSQL and the template uses smarty template. A SQL injection vulnerability exists in the UQCMS aj.php page, which can be exploited by attackers to obtain sensitive information from the database...
S-CM e-commerce system aj***.php page P_sort parameter SQL injection vulnerability
S-CMS e-commerce system is an e-commerce software. S-CM e-commerce system aj.php page Psort parameter SQL injection vulnerability, an attacker can use the vulnerability to obtain sensitive information...
S-CMS php version hospital website building system v1.0 SQL injection vulnerability in background aj***.php page (CNVD-2019-32865)
S-CMS php version hospital website building system is a PHP based website building system. S-CMS php version hospital website builder system v1.0 has a SQL injection vulnerability in the background aj.php page, which can be exploited by attackers to obtain sensitive information from the database...
S-CMS php version government website builder system backend aj***.php page has SQL injection vulnerability
S-CMS is a content management system CMS based on PHP and MySQL. A SQL injection vulnerability exists in the background aj.php page of the S-CMS php version of the government website building system, which can be exploited by attackers to obtain sensitive database data...
SQL injection vulnerability in the L_sort parameter of the aj***.php page of the S-CMS school website builder system
S-CMS school station building system is Zibo Shining Network Technology Co., Ltd. developed a specialized enterprise station building solutions for the product. S-CMS school site building system aj.php page Lsort parameter there is a SQL injection vulnerability, an attacker can use the...
SQL injection vulnerability in the S_show parameter of the aj***.php page of the S-CMS school website builder system
S-CMS school station building system is Zibo Shining Network Technology Co., Ltd. developed a specialized enterprise station building solutions for the product. S-CMS school website builder system aj.php page Sshow parameter SQL injection vulnerability, an attacker can use the vulnerability to...