SQL Injection Vulnerability in Jinwei Supermarket Cashiering System (CNVD-2020-22751)

Jinwei Supermarket Cashier System is a code-sweeping cashier tool designed for small and medium-sized supermarkets and community convenience stores. SQL injection vulnerability exists in Jinwei Supermarket Cashier System, which can be exploited by attackers to obtain sensitive information from th...

Xiamen Yishang Network Technology Co., Ltd. website system SQL injection vulnerability

Xiamen Yi Shang Network Technology Co., Ltd. is a company that provides one-stop service of website construction and Internet marketing. A SQL injection vulnerability exists in the website builder system of Xiamen Ecommerce Network Technology Co. An attacker can use this vulnerability to obtain...

SQL Injection Vulnerability in Jinwei Supermarket Cashier System (CNVD-2020-22269)

Jinwei Supermarket Cashiering System is a code-sweeping cashiering tool designed for small and medium-sized supermarkets and community convenience stores. SQL injection vulnerability exists in Jinwei Supermarket Cashier System, which can be exploited by attackers to obtain sensitive information...

SQL Injection Vulnerability in YouYi Cms Movie & TV System

Youyi cms is a movie and TV station building system. UE cms movie and TV system has a SQL injection vulnerability, an attacker can build clever URL requests to get the database data running in the background of the server...

GHSA-9C29-9H4M-WG5P Users can view database names in Apache Superset

In Apache Incubator Superset before 0.32, a user can view database names that he has no access to on a dropdown list in SQLLab...

Foshan City Suhu Network Technology Co., Ltd. building system there are SQL injection vulnerabilities

Foshan City, Sohu Network Technology Co., Ltd. is a commitment to provide a full range of web site construction services for the enterprise Internet company. Foshan City, Sohu Network Technology Co., Ltd. building system there is a SQL injection vulnerability, attackers can use the vulnerability ...

SQL Injection Vulnerability in DM Website Building System (CNVD-2020-23766)

DM enterprise building system is developed by php + mysql a set of specialized in small and medium-sized enterprise website construction of open source cms. DM website builder system has a SQL injection vulnerability , attackers can use the vulnerability to obtain sensitive information on the sit...

SQL Injection Vulnerability in Website Building System of Suzhou Leyi Network Technology Co.

Suzhou Lerye Network Technology Co., Ltd. was founded in 2011, is a professional engaged in enterprise website construction and e-commerce services network companies, to provide network promotion and marketing in one of the professional services. Suzhou Lerye Network Technology Co., Ltd. website...

Yantai Cloud Pulse Network Technology Co., Ltd. SQL injection vulnerability exists in Cloud Pulse Network website building system

Yantai cloud pulse network technology limited company cloud pulse network for brands to provide network station building services. There is a SQL injection vulnerability in the Yantai Cloud Vein Network Technology Co., Ltd. website builder system that can be exploited by attackers to obtain...

CVE-2019-4752

IBM Emptoris Spend Analysis and IBM Emptoris Strategic Supply Management Platform 10.1.0.x, 10.1.1.x, and 10.1.3.x is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-e...

SQL Injection Vulnerability in SemCMS SE***_Qu***.php File

SemCMS is a set of open source foreign trade enterprise website management system, written in php language, can be run under window or linux system. SemCMS SEQu.php file has a SQL injection vulnerability. An attacker can exploit the vulnerability to obtain sensitive information in the database...

SQL Injection Vulnerability in SemCMS SE***_Me***.php File

SemCMS is a set of open source foreign trade enterprise website management system, written in php language, can be run under window or linux system. SemCMS SEMe.php file SQL injection vulnerability. Attackers can use the vulnerability to obtain sensitive information in the database...

SQL Injection Vulnerability in Water Information Management Platform of Shandong Weimicro Technology Co.

Shandong Weimicro Technology Co., Ltd. is a science and technology-oriented enterprise mainly engaged in technology research and development. A SQL injection vulnerability exists in the water information management platform of Shandong Weimicro Technology Co. An attacker can exploit the...

MyuCMS open source content management system suffers from SQL injection vulnerability

MyuCMS open source content management system developed using ThinkPHP community mall aggregation, plug-ins, templates, lightweight and fast easy to expand. MyuCMS open source content management system has a SQL injection vulnerability , attackers can exploit the vulnerability to obtain sensitive...

Progress Software MOVEit Transfer SQL Injection Vulnerability (CNVD-2020-19007)

Progress Software MOVEit Transfer is a suite of file transfer software from Progress Software, USA. A SQL injection vulnerability in the REST API in Progress Software MOVEit Transfer version 2019.1 before 2019.1.4 and version 2019.2 before 2019.2.1 can be exploited by an attacker to access the...

SQL Injection Vulnerability in Hangzhou Orange Promise Technology Co.

Hangzhou Orange Promise Technology Co., Ltd. is a company focusing on Internet branding and online marketing, specializing in the following areas: branded website customization, WeChat application development, e-commerce platform development, mobile application development. Hangzhou Orange Promis...

CVE-2020-8611

In Progress MOVEit Transfer 2019.1 before 2019.1.4 and 2019.2 before 2019.2.1, multiple SQL Injection vulnerabilities have been found in the REST API that could allow an authenticated attacker to gain unauthorized access to MOVEit Transfer's database via the REST API. Depending on the database...

CVE-2020-8611

In Progress MOVEit Transfer 2019.1 before 2019.1.4 and 2019.2 before 2019.2.1, multiple SQL Injection vulnerabilities have been found in the REST API that could allow an authenticated attacker to gain unauthorized access to MOVEit Transfer's database via the REST API. Depending on the database...

SQL Injection Vulnerability in Shipping 100 Virtual Goods Autoship System

Shipping 100 Virtual Goods Autoship System is a virtual goods autoship system/article pay to read system. Shipping 100 Virtual Goods Autoship System suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information from the database...

SQL injection vulnerability in the pa***.php file of Tuan Ah VIP Movie System

Group ah VIP movie system is a set of registered members with proxy version of the VIP movie video watching website source code. There is a SQL injection vulnerability in the pa.php file of Tuan Ah VIP Movie System. An attacker can exploit the vulnerability to obtain sensitive information from th...