3898 matches found
Easy B2C Mall System d***.php file exists arbitrary SQL statement execution vulnerability
Easy B2C mall system is a mall system based on open source framework development. Easy B2C mall system d.php file exists arbitrary SQL statement execution vulnerability. An attacker can exploit the vulnerability to execute arbitrary SQL statements within the file...
SQL Injection Vulnerability in Waychar Enrollment System aj***.php Page id*** Parameter
Waychar Enrollment System is a PHP/MYSQL based enrollment system. Waychar enrollment system aj.php page id parameter exists SQL injection vulnerability, an attacker can use the vulnerability to obtain database sensitive information...
SQL Injection Vulnerability in the Integrated Management Information System of Shanghai Jinhui Software Co.
Shanghai Jinhui Software Co., Ltd. is a high-tech enterprise focusing on the engineering design and construction industry, specializing in providing enterprise management informatization consulting services and software products. Shanghai Jinhui Software Co., Ltd. comprehensive management...
SQL Injection Vulnerability in Ca***.aspx Page of Qixing Fault Reporting System
Qixing Fault Reporting System is a platform based on ASP.NET language to help organizations to report faults. A SQL injection vulnerability exists in the Ca.aspx page of the Qixing Fault Reporting System, which can be exploited by attackers to obtain sensitive information from the database...
SQL injection vulnerability in Heybbs micro community frontend us***.php file SQL injection
Heybbs micro-community is a front-end based on bootstrap + jq + css, back-end php + mysql development of micro-community program. Heybbs micro-community front-end us.php file SQL injection SQL injection vulnerability, an attacker can use the vulnerability to obtain database sensitive information...
SQL injection vulnerability in Tongda oa system (CNVD-2020-31075)
Ltd. is subordinate to China National Weapons Industry Information Center CNWIIC, which is referred to as Tongda Xinke. It is a high-tech team with the main business of collaborative management software development and implementation, service and consulting. There is a front-end SQL injection...
SQL Injection Vulnerability in Jinwei Mobile Mall System (CNVD-2020-29419)
Jinwei Mobile Mall System is a mall management system for micro-business customers with public numbers. A SQL injection vulnerability exists in Jinwei Mobile Mall System, which can be exploited by attackers to obtain sensitive information from the database...
SQL Injection Vulnerability in Web Service Platform of Civil Explosives Information System
The Civil Explosives Information System Web Service Platform is a management system provided by the Ministry of Public Security for provinces to manage blasting operators. A SQL injection vulnerability exists in the Civil Explosives Information System Web Service Platform, which can be exploited ...
TXQPHP Blog suffers from SQL Injection Vulnerability
TXQPHP Blog is a PHP blog system source code suitable for novice practitioners to practice, the system is written using MYSQLI, the front three templates home page, content page, message boards categories. TXQPHP Blog has a SQL injection vulnerability , an attacker can use this vulnerability to...
SQL Injection Vulnerability in Jinwei Mobile Mall System (CNVD-2020-31080)
Jinwei Mobile Mall System is a mall management system for micro-business customers with public numbers. A SQL injection vulnerability exists in Jinwei Mobile Mall System, which can be exploited by attackers to obtain sensitive information from the database...
SQL Injection Vulnerability in SemCMS SE***_Ba***.php File
SemCMS is a set of open source foreign trade enterprise website management system, written in php language, can be run under window or linux system. SemCMS SEBa.php file has a SQL injection vulnerability. An attacker can exploit the vulnerability to obtain sensitive information in the database...
SQL Injection Vulnerability in the Website Building System of Henan Yue Longmen Technology Co.
Henan Yue Longmen Technology Co., Ltd. is a comprehensive network technology company founded on website construction, software development and promotion marketing. There are SQL injection loopholes in the website construction system of Henan Leaping Dragon Gate Technology Co., Ltd. which can be...
SQL Injection Vulnerability in Longcai Technology Group Limited Liability Company's Website Building System
Longcai Technology Group Limited Liability Company is a company dedicated to the development and construction of the Internet enterprise wisdom cloud service platform, and "Internet + industry innovation" platform services. There is a SQL injection vulnerability in Longcai Technology Group's...
SQL Injection Vulnerability in EDI CMS ad***_sp***.asp Page
ETA CMS is a simple, practical and efficient website builder. A SQL injection vulnerability exists in the adsp.asp page of EDA CMS, which can be exploited by attackers to obtain sensitive information from the database...
SQL injection vulnerability in beescm backend ad***_fl***.php file
BEESCMS is PHP+MYSQL architecture, multi-language system, easy to expand content modules, diversified template styles, simple and powerful template production, professional SEO optimization, easy to operate the background, fully meet the corporate website, foreign trade websites, institutions,...
ShopsN open source mall system SQL injection vulnerability
ShopsN open source mall system is a product of Shanghai Yiso Network Technology Co., Ltd., a full-featured open source online store in line with enterprise-class commercial standards of the whole network system . ShopsN open source mall system SQL injection vulnerabilities , attackers can exploit...
CVE-2020-5406
The CVE concerns VMware Tanzu Application Service for VMs (2.6.x <2.6.18, 2.7.x <2.7.11, 2.8.x
ZSQL: Password Lifetime
The PASSWORDLIFETIME parameter specifies the number of days the same password can be used. The default value is 180 days. After the configuration, the system provides a password grace period after the password validity period expires. In this case, you need to change the password before the...
SQL Injection Vulnerability in Easy B2C Mall System V1.1 ar***.php Page
Easy B2C mall system is a mall system based on open source framework development. Easy B2C Mall System V1.1 ar.php page SQL injection vulnerability, attackers can use the vulnerability to obtain database sensitive information...
ZSQL: IP Address Whitelist
The IP address whitelist is configured by setting the TCPINVITEDNODES parameter. After IP address whitelist/blacklist checking is enabled and the IP address whitelist is configured, only whitelisted clients can access the database. Such a whitelist allows for IPv4 and IPv6 addresses, as well as a...