SQL Injection Vulnerability in Jeesite of Jinan Zhuoyuan Software Co. Ltd (CNVD-2020-41722)

JeeSite is an enterprise information technology development infrastructure platform. Jeesite by Jinan Zhuoyuan Software Co., Ltd. suffers from a SQL injection vulnerability, which can be exploited by an attacker to obtain sensitive information from the database...

SQL Injection Vulnerability in School Worry-Free Grade Checking System

School Worry-Free Results Query System is a results query system developed to meet the needs of student results query in school academic management. A SQL injection vulnerability exists in the system, which can be exploited by attackers to obtain sensitive information from the database...

Shenzhen ShuoWin Interactive Information Technology Co., Ltd. website building system SQL injection vulnerability

Shenzhen ShuoWin Interactive Information Technology Co., Ltd. is an Internet technology development, product design, economic and trade consulting and other projects. Shenzhen Shuowin Interactive Information Technology Co., Ltd. website building system has a SQL injection vulnerability, attackers...

SQL Injection Vulnerability in Website Building System of Jinhua Yitu Network Technology Co.

Ltd. is a professional creative design company dedicated to online marketing and brand image strategy design. There is a SQL injection vulnerability in the website building system of Jinhua Yitu Network Technology Co. Ltd, which can be exploited by attackers to obtain sensitive information from t...

The vulnerability of the InnoDB component of the MySQL Database Server management system, which allows a hacker to cause a service failure.

The vulnerability of the InnoDB component in the MySQL Database Management System is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker to cause service interruptions using the MySQL Protocol...

CVE-2020-3339

A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. The vulnerability is due to improper validation of user-submitted parameters. An attacker could exploit this...

SQL Injection Vulnerability in the sn*** Parameters of the School Worry-Free Online Exam System

School Worry-free online examination system adopts the Internet technology, quickly builds the online examination system platform, comprehensively realizes the network, paperless and automation of the examination work. School Worry-free online examination system sn parameters exist SQL injection...

LJCMS suffers from SQL injection vulnerability (CNVD-2020-32623)

LJCMS is a free and open source content management system. LLJCMS suffers from a SQL injection vulnerability that can be exploited by attackers to obtain sensitive information about a database...

SQL Injection Vulnerability in freecms Member Center

FreeCMS is a secure, practical effective and scalable CMS system. A SQL injection vulnerability exists in FreeCMS Member Center, which can be exploited by attackers to obtain sensitive information from the database...

MKCMS suffers from SQL injection vulnerability (CNVD-2020-33187)

MKCMS is a film and television management system, support for independent modification, users can directly upload the server to generate a website platform, you can add the background to modify the project and so on. MKCMS SQL injection vulnerability, attackers can use the vulnerability to obtain...

SQL injection vulnerability in freecms member center (CNVD-2020-33184)

FreeCMS is a secure, practical effective and scalable CMS system. A SQL injection vulnerability exists in FreeCMS Member Center, which can be exploited by attackers to obtain sensitive information from the database...

Design/Logic Flaw

In Anchore Engine version 0.7.0, a specially crafted container image manifest, fetched from a registry, can be used to trigger a shell escape flaw in the anchore engine analyzer service during an image analysis process. The image analysis operation can only be executed by an authenticated user vi...

CVE-2020-11075 Shell Escape in Anchore Engine

In Anchore Engine version 0.7.0, a specially crafted container image manifest, fetched from a registry, can be used to trigger a shell escape flaw in the anchore engine analyzer service during an image analysis process. The image analysis operation can only be executed by an authenticated user vi...

5vshop e-commerce system suffers from SQL injection vulnerability

5vshop e-commerce system is an enterprise-level open source e-commerce system. 5vshop e-commerce system suffers from SQL injection vulnerability. Attackers can use the vulnerability to obtain sensitive information in the database...

SQL Injection Vulnerability in Jiangyin Golden Pulse Technology Co.

Jiangyin Golden Pulse Technology Co., Ltd. is a network service provider specializing in website construction and website promotion. SQL injection vulnerability exists in the website building system of Jiangyin Golden Pulse Technology Co. Attackers can use the vulnerability to obtain sensitive...

Logic flaw vulnerability in Extreme CMS (CNVD-2020-33073)

Extreme CMS is an open source and free PHPCMS web content management system. A logic flaw vulnerability exists in Extreme CMS. Attackers can use the vulnerability to overstep their rights to delete or modify the database of other users goods...

SQL Injection Vulnerability in the Website Building System of Tianze Culture Communication (Henan) Co.

Ltd. is a network service company that provides Internet network information services, engages in Internet value-added services, and provides enterprises with customized network solutions, website construction, network promotion and other services. There is a SQL injection vulnerability in the...

Vendor Inquiry System of Shanghai Haidian Software Co.

Shanghai Haidian Software Co., Ltd. is a provider of informatization solutions focusing on the pharmaceutical distribution industry. A universal password login vulnerability exists in the supplier query system of Shanghai Haidian Software Co., Ltd. that can be exploited by attackers to obtain...

SQL Injection Vulnerability in the Website Building System of Tianze Culture Communication (Henan) Co.

Ltd. is a network service company that provides Internet network information services, engages in Internet value-added services, and provides enterprises with customized network solutions, website construction, network promotion and other services. There is a SQL injection vulnerability in the...

SQL Injection Vulnerability in Website Building System of Zhongshan Cohesion Network Technology Co.

Zhongshan Cohesion Network Technology Co., Ltd. is committed to Internet brand building and network marketing, specializing in areas including website construction, e-commerce, mobile Internet marketing, system platform development, and other services. Zhongshan Cohesion Network Technology Co.,...