EUVD-2015-1077

Malware in sbrugna...

CVE-2025-10122

A vulnerability was found in Maccms10 2025.1000.4050. Affected is the function rep of the file application/admin/controller/Database.php. Performing manipulation of the argument where results in sql injection. The attack can be initiated remotely. The exploit has been made public and could be use...

CVE-2015-10064

A vulnerability was found in VictorFerraresi pokemon-database-php. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to sql injection. The patch is named dd0e1e6cdf648d6a3deff441f515bcb1d7573d68. It is recommended to apply a patch...

IBPhoenix ibWebAdmin 代码注入漏洞

IBPhoenix ibWebAdmin is a Firebird and InterBase database server web front end from IBPhoenix. A code injection vulnerability exists in IBPhoenix ibWebAdmin 1.0.2 and earlier versions, which stems from the parameter dbloginrole in the file /database.php that causes cross-site scripting...

BIT-WORDPRESS-2021-39201 Authenticated cross-site scripting (XSS) in WordPress editor

WordPress is a free and open-source content management system written in PHP and paired with a MySQL or MariaDB database. Impact The issue allows an authenticated but low-privileged user like contributor/author to execute XSS in the editor. This bypasses the restrictions imposed on users who do n...

CVE-2015-10064

A vulnerability was found in VictorFerraresi pokemon-database-php. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to sql injection. The patch is named dd0e1e6cdf648d6a3deff441f515bcb1d7573d68. It is recommended to apply a patch...

Sql injection

A vulnerability was found in VictorFerraresi pokemon-database-php. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to sql injection. The patch is named dd0e1e6cdf648d6a3deff441f515bcb1d7573d68. It is recommended to apply a patch...

CVE-2015-10064

CVE-2015-10064 affects VictorFerraresi’s pokemon-database-php . The vulnerability is a SQL injection in an unknown functionality, described as critical. The patch to fix this issue is named dd0e1e6cdf648d6a3deff441f515bcb1d7573d68 . Connected documents confirm the affected software and the remedi...

CVE-2015-10064 VictorFerraresi pokemon-database-php sql injection

A vulnerability was found in VictorFerraresi pokemon-database-php. It has been declared as critical. Affected by this vulnerability is an unknown functionality. The manipulation leads to sql injection. The patch is named dd0e1e6cdf648d6a3deff441f515bcb1d7573d68. It is recommended to apply a patch...

VictorFerraresi pokemon-database-php SQL注入漏洞

pokemon-database-php is an application by VictorFerraresi Personal Developer. VictorFerraresi pokemon-database-php suffers from a SQL injection vulnerability. An attacker exploits this vulnerability to cause sql injection...

project_todolist SQL注入漏洞

projecttodolist is an application by tutrantta individual developers. A SQL injection vulnerability exists in tutrantta projecttodolist, which originates from the function getAffectedRows/where/insert/update in the library library/Database.php, the operation of which results in SQL injection...

UBUNTU-CVE-2019-10784

phppgadmin through 7.12.1 allows sensitive actions to be performed without validating that the request originated from the application. One such area, "database.php" does not verify the source of an HTTP request. This can be leveraged by a remote attacker to trick a logged-in administrator to vis...

ZoneMinder Cross-Site Scripting Vulnerability (CNVD-2019-04686)

ZoneMinder is an open source video surveillance software system. The system supports IP, USB and analog cameras and more. A cross-site scripting vulnerability exists in the build of SQL-ERR messages in the includes/database.php file of ZoneMinder versions prior to 1.32.3, which can be exploited b...