SQL Injection Vulnerability in Wujia Network Backend Management Platform

Wujia Networks is an Internet high-tech enterprise focusing on software and hardware technology research and development. SQL injection vulnerability exists in the background management platform of Wujia Network, which can be exploited by attackers to obtain sensitive information in the database...

SQL Injection Vulnerability in Jacko Web Design Studio Website Building System (CNVD-2021-39106)

Jacko Web Design Studio is an integrated communication agency with services such as website construction, graphic design and advertising production. A SQL injection vulnerability exists in the website building system of Jacko Web Design Studio. An attacker can exploit this vulnerability to obtain...

Xionghai CMS suffers from SQL injection vulnerability (CNVD-2021-35834)

Xionghai CMS is a set of comprehensive website management system that can be widely used for personal blogs, personal websites and corporate websites. XIONGHAI CMS suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information from the database...

SQL Injection Vulnerability in Tianxin SCADA System of Tianxin Instrumentation Group Limited (CNVD-2021-24454)

TIANXIN Instrumentation Group Limited is a professional service provider of flow meters and gas application system solutions in China. A SQL injection vulnerability exists in the TIANXIN SCADA system of TIANXIN Instrumentation Group Limited. An attacker can exploit the vulnerability to obtain...

SQL Injection Vulnerability in One Zero Technology's Website Building System

Zero-One Technology Ren is a business intelligence solutions provider that integrates consulting, professional services and product marketing. A SQL injection vulnerability exists in the website building system of ZeroOne Technology, which can be exploited by attackers to obtain sensitive...

Wordpress CleanTalk SQL Injection Vulnerability

Wordpress CleanTalk is an application plugin for Wordpress. Provides a free anti-spam plugin that works with the premium Cloud AntiSpam service cleantalk.org. Anti-Spam by CleanTalk WordPress plugin before 5.149 suffers from a SQL injection vulnerability that stems from entering unverified...

SQL Injection Vulnerability in BuildingEasy™ of Shanghai Jinhui Software Co.

Shanghai Jinhui Software Co., Ltd. is a high-tech enterprise focusing on the engineering design and construction industry, specializing in providing enterprise management informatization consulting services and software products. Ltd. BuildingEasy™ suffers from a SQL injection vulnerability, whic...

SQL Injection Vulnerability in Higher Continuing Education Teaching and Learning Platform

Ltd. is a large-scale enterprise specializing in distance learning content provision and learning support services. A SQL injection vulnerability exists in the Higher Continuing Education Teaching and Academic Affairs Platform, which can be exploited by attackers to obtain sensitive information...

SQL Injection Vulnerability in the Home Furnishing ERP Management System of Shanghai Furnishing Alliance Information Technology Co.

Ltd. is a software service company specializing in enterprise management solutions for the decoration industry. There is a SQL injection vulnerability in the Home Decoration ERP Management System of Shanghai Decoration Alliance Information Technology Co., Ltd, which can be exploited by attackers ...

SQL Injection Vulnerability in China Alliance Website Building System

Headquartered in Hong Kong, China Alliance Network Group Co., Ltd. is an Internet digital services integrator that has gone through 18 years of history, and has provided more than 10,000 customers with good Internet website construction, micro letter micro business, APP development, 3DVR panorama...

Shenzhen Zero-One Information Technology Co., Ltd. website building system SQL injection vulnerability

Shenzhen Zero-One Information Technology Co., Ltd. is a business intelligence solution provider integrating consulting, professional services and product marketing. There is a SQL injection vulnerability in the website building system of Shenzhen Zero One Information Technology Co. Attackers can...

SQL Injection Vulnerability in Website Building System of Jingzhou Huacheng Network Information Technology Co. Ltd (CNVD-2021-14436)

Jingzhou Huacheng Network Information Technology Co., Ltd. is a set of website planning and construction, network optimization and promotion, software research and development, hotel management system agent sales as well as large-scale website operation and other projects as one of the profession...

Ship 100 virtual goods autoship system bu***.php page has sql injection vulnerability

Shipping 100 Virtual Goods Autoship System is a virtual goods autoship system/article pay to read system. Ship 100 virtual goods autoship system bu.php page there is a sql injection vulnerability, attackers can use the vulnerability to obtain sensitive information database...

SQL Injection Vulnerability in Jinan Ganan Information Technology Co.

Ltd. is a high-tech company engaged in Internet services, mainly for enterprises to provide website construction, website promotion and so on. Ltd. has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information from the database...

SQL Injection Vulnerability in Comprehensive Management Platform of Beijing Zhongcheng Kexin Technology Development Co., Ltd (CNVD-2021-05890)

Beijing Zhongcheng Kexin Technology Development Co., Ltd. is a domestic service provider of the whole tourism industry chain with a high market share. There is a SQL injection vulnerability in the integrated management platform of Beijing Zhongcheng Kexin Technology Development Co., Ltd. that can...

SQL Injection Vulnerability in Tengzhi Yunmao Store Management System

Tengzhi cloud trade through the store management system for fasteners, electromechanical tools, hardware industry store purchasing, warehousing, processing, sales, finance, statistics for the core business management module, to achieve comprehensive control of the store. Tengzhi cloud trade store...

SQL Injection Vulnerability in ILAS III Digital Library System (CNVD-2020-70576)

ILAS III digital library is a set of library automation integrated system that can adapt to the use of libraries of different levels, scales and types at home and abroad, which is undertaken and organized by the Shenzhen Library. ILAS III digital library system SQL injection vulnerability,...

SQL Injection Vulnerability in Xinbu Supply Chain System of Xi'an Xinbu Electronic Information Technology Co.

Xinbu Supply Chain System is a software that realizes retailer-supplier collaboration, new type of zero-supply relationship, online ordering, and online reconciliation functions. Xi'an Xinbu Supply Chain System of Xi'an Xinbu Electronic Information Technology Co., Ltd. suffers from a SQL injectio...

Support Incident Tracker SQL Injection Vulnerability (CNVD-2021-25275)

Support Incident Tracker SiT! is a PHP and MySQL based technical support phone/email tracking system. A SQL injection vulnerability exists in Support Incident Tracker version 3.67 p2. The vulnerability stems from a lack of validation of externally entered SQL statements in database-based...

Oracle Property Management Platform remote command execution and the cardholder data is decrypted vulnerability analysis-vulnerability warning-the black bar safety net

Recently, I found that in some large business hotel, the reception data management system of Oracle Opera in the presence of a plurality of security vulnerabilities. Hackers can exploit these vulnerabilities, the hotel booking App mentioning the right to get higher user usage rights; at the same...