Property Listing Script 3.1 SQL Injection

┌┌────────────────────────────────────────────────────────────────────────────────────┐ ││ C r a C k E r ┌┘ ┌┘ T H E C R A C K O F E T E R N A L M I G H T ││ └────────────────────────────────────────────────────────────────────────────────────┘┘ ┌──── From The Ashes and Dust Rises An Unimaginable...

Ruijie Networks RG-EG Series Routers SQL注入漏洞

Ruijie RG-EG series gateway EG350 is a Ruijie gateway product. sql injection vulnerability exists in RG-EG series gateway EG350 alarmService.php, which allows remote attackers to submit special SQL requests to manipulate the database and obtain sensitive information or execute arbitrary code. cod...

CVE-2022-26669 ASUS Control Center - SQL Injection

ASUS Control Center is vulnerable to SQL injection. An authenticated remote attacker with general user privilege can inject SQL command to specific API parameters to acquire database schema or access data...

ASUS Control Center SQL注入漏洞

ASUS Control Center is a new centralized IT management software from ASUS China. The software can monitor and control ASUS servers, workstations. A SQL injection vulnerability exists in ASUS Control Center v1.4.2.5. An attacker can exploit this vulnerability to inject SQL commands into specific A...

CVE-2022-23168

The attacker could get access to the database. The SQL injection is in the username parameter at the login panel: username: admin'--...

CVE-2022-23168

The attacker could get access to the database. The SQL injection is in the username parameter at the login panel: username: admin'--...

CVE-2022-23168 Amodat - Mobile Application Gateway SQL Injection (SQLi)

The attacker could get access to the database. The SQL injection is in the username parameter at the login panel: username: admin'--...

CVE-2022-23168

CVE-2022-23168 is tied to the Amodat Mobile Application Gateway. The connected CNVD/CNNVD entries describe a SQL injection vulnerability in the login panel, caused by lack of validation in the username parameter, allowing an attacker to access the database. Affected versions are prior to 7.12.00....

CVE-2022-23168

The attacker could get access to the database. The SQL injection is in the username parameter at the login panel: username: admin'--...

MV Informática IDCE MV SQL Injection Vulnerability

MV Informática IDCE MV is a health management software from the Brazilian company MV Informática. MV Informática IDCE MV version 1.0 contains a SQL injection vulnerability that stems from a SQL injection issue in the user field of the login page. An attacker could exploit the vulnerability to...

WordPress plugin Cube Slider SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. The WordPress plugin is an application plugin. The WordPress Cube Slider plugin 1.2 and earlier versions are vulnerable to SQL injection, which...

CVE-2022-31768

IBM InfoSphere Information Server 11.7 is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database...

IBM InfoSphere Information Server SQL注入漏洞

IBMInfoSphere InformationServer is a data integration software platform that helps organizations derive more value from complex and heterogeneous information scattered across systems.IBM InfoSphere Information Server version 11.7 is vulnerable to SQL injection. An attacker could exploit the...

ChatBot App with Suggestion SQL注入漏洞

ChatBot App with Suggestion is a ChatBot application with Suggestion by Carlo Montero's personal developer. v1.0 of ChatBot App with Suggestion is vulnerable to SQL injection, which originates from /simplechatbot/ admin/?page=responses/manageresponse&id=The page lacks validation for external inpu...

EGavilan Media Expense-Management-System SQL注入漏洞

EGavilan Media Expense-Management-System is a simple expense management system from EGavilan Media, Inc. An SQL injection vulnerability exists in EGavilan Media Expense-Management-System version 1.0, which stems from vulnerability to SQL injection via / expenseaction.php for SQL injection attacks...

Car Rental Management System SQL注入漏洞

Car Rental Management System is a car rental management system. SQL injection vulnerability exists in Car Rental Management System, which can be exploited by attackers to view, add, modify or delete information in the back-end database...

CVE-2022-24848 SQL Injection in DHIS2's in OrgUnit program association

DHIS2 is an information system for data capture, management, validation, analytics and visualization. A SQL injection security vulnerability affects the /api/programs/orgUnits?programs= API endpoint in DHIS2 versions prior to 2.36.10.1 and 2.37.6.1. The system is vulnerable to attack only from...

CVE-2022-30496

SQL injection in Logon Page of IDCE MV's application, version 1.0, allows an attacker to inject SQL payloads in the user field, connecting to a database to access enterprise's private and sensitive information...

CVE-2022-28862

In Archibus Web Central before 26.2, multiple SQL Injection vulnerabilities occur in dwr/call/plaincall/workflow.runWorkflowRule.dwr. Through the injection of arbitrary SQL statements, a potential attacker can modify query syntax and perform unauthorized and unexpected operations against the remo...

GHSA-8FJ6-PC5R-347Q qcubed SQL injection vulnerability in profile.php via the strQuery parameter

A SQL injection vulnerability in qcubed all versions including 3.1.1 in profile.php via the strQuery parameter allows an unauthenticated attacker to access the database by injecting SQL code via a crafted POST request...