1985 matches found
CVE-2023-4598
The Slimstat Analytics plugin for WordPress is vulnerable to SQL Injection via the plugin's shortcode in versions up to, and including, 5.0.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...
Free Hospital Management System SQL Injection Vulnerability
The Free Hospital Management System is a computerized system that helps manage healthcare-related information and helps healthcare providers do their jobs efficiently. The Free Hospital Management System suffers from a SQL injection vulnerability that originates from a lack of validation of the...
Apache Superset 2.0.0 Remote Code Execution Exploit
Apache Superset versions 2.0.0 and below utilize Flask with a known default secret key which is used to sign HTTP cookies. These cookies can therefore be forged. If a user is able to login to the site, they can decode the cookie, set their userid to that of an administrator, and re-sign the cooki...
Major CRM Provider Really Simple Systems Leaked 3M Customer Records
By Deeba Ahmed Really Simple Systems exposed its database publicly without any password or security authentication. KEY FINDINGS A global CRM… This is a post from HackRead.com Read the original post: Major CRM Provider Really Simple Systems Leaked 3M Customer Records...
CVE-2023-44163
The 'search' parameter of the processsearch.php resource does not validate the characters received and they are sent unfiltered to the database...
Design/Logic Flaw
The 'Email' parameter of the processlogin.php resource does not validate the characters received and they are sent unfiltered to the database...
CVE-2023-44168
This CVE-2023-44168 entry is rejected/not used and does not represent an active vulnerability.
CVE-2023-44165
CVE-2023-44165 entry is rejected and does not represent an active vulnerability.
CVE-2023-44163
CVE-2023-44163 describes a SQL Injection risk in a web application where the search parameter of the process_search.php resource does not validate received characters, sending them unfiltered to the database. The issue enables unauthenticated access with potential impact to confidentiality, integ...
CVE-2023-43014
CVE-2023-43014 relates to Asset Management System v1.0 with an authenticated SQL Injection in the fields “first_name” and “last_name” on the user.php page. The underlying issue is improper input handling that enables an authenticated attacker to dump the database contents. Documented impact is hi...
CVE-2023-41335 Temporary storage of plaintext passwords during password changes in matrix synapse
Synapse is an open-source Matrix homeserver written and maintained by the Matrix.org Foundation. When users update their passwords, the new credentials may be briefly held in the server database. While this doesn't grant the server any added capabilities—it already learns the users' passwords as...
Weak Password Vulnerability in Marcum Database Auditing System of Shenzhen Marcum Technology Co.
Marcum Database Security Audit System mainly realizes visualized monitoring, analysis and summarization of users' access to database operation behaviors, providing users with electronic evidence for tracing back the root cause of accidents, and at the same time, providing efficient querying of...
The vulnerability of the quality management software for automobile manufacturers, QMS Automotive, relates to the ability to disclose information through a server error message, allowing an intruder to gain unauthorized access to the database.
The vulnerability of the quality management software for automobile manufacturers, QMS Automotive, involves the disclosure of information through server error messages. Exploiting this vulnerability can allow an unauthorized attacker to gain unauthorized access to the database...
CVE-2023-21521
CVE-2023-21521 describes an SQL Injection in the BlackBerry AtHoc 7.15 Management Console (Operator Audit Trail). The affected component is the Management Console’s operator audit trail feature, where user-supplied input can be interpreted as SQL, enabling an attacker to read data from the databa...
FreeWorld ransomware attacks MSSQL—get your databases off the internet
When we think of ransomware and brute force password guessing attacks, we normally think of RDP, but recent research from Securonix reminds us that anything secured with a password and exposed to the internet is of interest to cybercriminals. Microsoft's Remote Desktop Protocol has been a favouri...
CVE-2023-37941
CVE-2023-37941 affects Apache Superset where an attacker with write access to the metadata database can persist a crafted Python object to achieve remote code execution on the web backend. The vulnerability hinges on the metadata DB, an internal component, being accessible with significant privil...
PT-2023-27398 · Digita Information Technology · Smartrise Document Management System
Name of the Vulnerable Software and Affected Versions: Digita Information Technology Smartrise Document Management System versions prior to Hvl-2.0 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This...
Oracle RMAN Missing Auditing Vulnerability
Proof of concept exploit for Oracle RMAN on Oracle database versions 19c, 18c, 12.2.0.1, and 12.1.0.2 where an RMAN controlfile operation is not adequately logged. Title: CVE-2021-2207 - RMAN Controlfile Operation Not Audited Product: Database Manufacturer: Oracle Affected Versions: 12.1.0.2,...
CVE-2023-2229
The Quick Post Duplicator for WordPress is vulnerable to SQL Injection via the ‘postid’ parameter in versions up to, and including, 2.0 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticate...
CVE-2023-2188
The Colibri Page Builder for WordPress is vulnerable to SQL Injection via the ‘postid’ parameter in versions up to, and including, 1.0.227 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for...