CVE-2017-20273

Joomla Event Registration Pro Calendar 4.1.3 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the id parameter. Attackers can send GET requests to index.php with...

CVE-2024-34480

SourceCodester Computer Laboratory Management System 1.0 allows admin/category/viewcategory.php id SQL Injection...

CVE-2024-30163

Invision Community before 4.7.16 allow SQL injection via the applications/nexus/modules/front/store/store.php IPS\nexus\modules\front\store\store::categoryView method, where user input passed through the filter request parameter is not properly sanitized before being used to execute SQL queries...

Dino Physics School Assistant SQL注入漏洞

Dino Physics School Assistant is an application. A SQL injection vulnerability exists in Dino Physics School Assistant version 2.3, which originates from unrecognized code in /admin/category/viewcategory.php, which leads to SQL injection via the parameter id...

CVE-2024-3316

A vulnerability was found in SourceCodester Computer Laboratory Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /admin/category/viewcategory.php. The manipulation of the argument id leads to sql injection. The attack...

PT-2024-25137 · Sourcecodester · Sourcecodester Computer Laboratory Management System

Name of the Vulnerable Software and Affected Versions: SourceCodester Computer Laboratory Management System version 1.0 Description: A critical issue has been found in the SourceCodester Computer Laboratory Management System, affecting an unknown functionality of the file /admin/category/view...

CVE-2022-46122

Helmet Store Showroom Site v1.0 is vulnerable to SQL Injection via /hss/admin/categories/viewcategory.php?id=...

CVE-2022-36698

Ingredients Stock Management System v1.0 was discovered to contain a SQL injection vulnerability via the id parameter at /categories/viewcategory.php...

CVE-2022-36698

CVE-2022-36698 concerns the Ingredients Stock Management System v1.0, which is affected by a SQL injection vulnerability in the id parameter of /categories/view_category.php. The issue is described across multiple sources (e.g., CVE details, CNVD/CNNVD entries) as an SQLi in the /categories/view_...

CVE-2022-32331

Fast Food Ordering System v1.0 is vulnerable to SQL Injection via /ffos/admin/categories/viewcategory.php?id=...

The vulnerability of D-Link DIR816L router’s microprogramming software allows a hacker to gain access to the folder_view.php and category_view.php folders.

The vulnerability of D-Link DIR816L router’s microprogramming software is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to gain access to the folders folderview.php and categoryview.php...

CVE-2022-28955

An access control issue in D-Link DIR816LFW206b01 allows unauthenticated attackers to access folders folderview.php and categoryview.php...

CVE-2022-28955

An access control issue in D-Link DIR816LFW206b01 allows unauthenticated attackers to access folders folderview.php and categoryview.php...

D-Link DIR816 授权问题漏洞

The D-Link DIR816 is a wireless router from AUO D-Link of Taiwan, China. The D-Link DIR816L suffers from an Access Control Error vulnerability that stems from improper access control. An unauthenticated attacker could use this vulnerability to gain access to the folders folderview.php and...

D-Link DIR-850L Wireless AC1200 Dual Band Gigabit Cloud Router Authentication Bypass Vulnerability

D-Link DIR-850L Wireless AC1200 Dual Band Gigabit Cloud Router is a wireless router product from AUO D-Link. An authentication bypass vulnerability exists in the D-Link DIR-850L Wireless AC1200 Dual Band Gigabit Cloud Router. The vulnerability can be exploited to bypass the SharePort Web Access...

CVE-2018-9032

An authentication bypass vulnerability on D-Link DIR-850L Wireless AC1200 Dual Band Gigabit Cloud Router Hardware Version : A1, B1; Firmware Version : 1.02-2.06 devices potentially allows attackers to bypass SharePort Web Access Portal by directly visiting /categoryview.php or /folderview.php...

CVE-2018-9032

An authentication bypass vulnerability on D-Link DIR-850L Wireless AC1200 Dual Band Gigabit Cloud Router Hardware Version : A1, B1; Firmware Version : 1.02-2.06 devices potentially allows attackers to bypass SharePort Web Access Portal by directly visiting /categoryview.php or /folderview.php...

CVE-2017-17875

The JEXTN FAQ Pro extension 4.0.0 for Joomla! has SQL Injection via the id parameter in a view=category action...

Just Dial Clone Script SQL Injection Vulnerability

Exploit for php platform in category web applications Exploit Title: SQL Injection in Just Dial Clone Script Date: 20 October 2016 Exploit Author: Arbin Godar Website : ArbinGodar.com Vendor: http://www.i-netsolution.com/...

Just Dial Clone Script - srch SQL Injection

Just Dial Clone Script - srch SQL Injection Exploit Title: SQL Injection in Just Dial Clone Script Date: 20 October 2016 Exploit Author: Arbin Godar Website : ArbinGodar.com Vendor: http://www.i-netsolution.com/...