Complaint Management System SQL Injection Vulnerability

Complaint Management System is a complaint management system. Complaint Management System suffers from a SQL injection vulnerability that stems from the lack of validation of externally entered SQL statements in the cid parameter of /complaint-details.php. An attacker can exploit this vulnerabili...

PT-2005-3099 · Plague · Plague News System

Name of the Vulnerable Software and Affected Versions: Plague News System versions 0.6 and earlier Description: The issue is related to a cross-site scripting XSS vulnerability. It allows remote attackers to inject arbitrary web script or HTML via the cid parameter in the "index.php" file...