3894 matches found
Moodle SQL Injection Vulnerability (CNVD-2017-04275)
Moodle is a free, open-source e-learning software platform, also known as a course management system, learning management system, or virtual learning environment, developed by Dr. Martin Dougiamas of Australia. Moodle suffers from a SQL injection vulnerability that originates from the program...
Joomla! OpenCart Component SQL Injection Vulnerability
Joomla! is a content management system which is quite famous in foreign countries.OpenCart is a system component for product management in Joomla! A SQL injection vulnerability exists in the productid parameter of the Joomla! OpenCart index.php page, which can be exploited by attackers to access ...
Joomla! jCart For OpenCart Component SQL Injection Vulnerability
Joomla! is a content management system that is quite well known abroad. A SQL injection vulnerability exists in the Joomla! jCart For OpenCart component, which can be exploited by attackers to access or modify sensitive database information...
Dahua Technology Camera Products Unauthorized Access Vulnerability
DH-IPC-HDW23A0RN-ZS, DH-IPC-HFW13A0SN-W, DHI-HCVR51A04HE-S3 are some of the many camera products from Dahua Technology. The unauthorized access vulnerability exists in Dahua's camera products, which allows an attacker to access the user database of a camera product with non-administrator...
Joomla Vik Rent Items component 'itemopt' parameter SQL injection vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the 'itemopt' parameter of the Joomla Vik Rent Items component. An attacker can exploit the vulnerability to access or modify database data...
Joomla Vik Appointments Component SQL Injection Vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the 'itemopt' parameter of the Joomla Vik Appointments component, which can be exploited by attackers to access or modify database data...
Joomla com_sngevents plugin 'id' parameter SQL injection vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the 'id' parameter of the Joomla comsngevents plugin. An attacker can exploit the vulnerability to access or modify database data...
Joomla com_fidecalendar plugin 'aid' parameter SQL injection vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the 'aid' parameter of the Joomla comfidecalendar plugin. An attacker can exploit the vulnerability to access or modify database data...
Joomla com_registrationpro plugin 'did' parameter SQL injection vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the 'did' parameter of the Joomla comregistrationpro plugin. An attacker can exploit the vulnerability to access or modify database data...
JUX EventOn component id parameter SQL injection vulnerability
Joomla! is the United States Open Source Matters team developed a set of open source content management system CMS. The system provides RSS feeds , site search and other functions . A SQL injection vulnerability exists in the id parameter of the JUX EventOn component of Joomla! An attacker can...
Soundify 1.1 - 'tid' SQL Injection
Exploit Title: Soundify - Audio Sharing Software v1.1 - SQL Injection Google Dork: N/A Date: 09.03.2017 Vendor Homepage: https://www.ncrypted.net/ Software: https://www.ncrypted.net/soundify Demo: http://demo.ncryptedprojects.com/soundify/ Version: N/A Tested on: Win7 x64, Kali Linux x64 Exploit...
GPS Tools Component SQL Injection Vulnerability in Joomla!
Joomla! is the United States Open Source Matters team developed a set of open source content management system CMS. The system provides RSS feeds , site search and other functions . A SQL injection vulnerability exists in the Joomla GPS Tools component. An attacker can exploit the vulnerability t...
Google Increases Bug Bounty Payouts by 50% and Microsoft Just Doubles It!
Well, there's some good news for hackers and bug bounty hunters! Both tech giants Google and Microsoft have raised the value of the payouts they offer security researchers, white hat hackers and bug hunters who find high severity flaws in their products. While Microsoft has just doubled its top...
Joomla com_webgrouper component 'Itemid' parameter SQL injection vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the 'Itemid' parameter of the Joomla comwebgrouper component. An attacker can exploit the vulnerability to access or modify database data...
Joomla com_jdownloads component 'cid' parameter SQL injection vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the 'cid' parameter of the Joomla comjdownloads component. An attacker can exploit the vulnerability to access or modify database data...
Joomla com_news component 'id' parameter SQL injection vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the 'id' parameter of the Joomla comnews component. An attacker can exploit the vulnerability to access or modify database data...
Joomla com_frontpage component 'Itemid' parameter SQL injection vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the 'Itemid' parameter of the Joomla comfrontpage component. An attacker can exploit the vulnerability to access or modify database data...
Joomla com_blog component 'Pid' parameter SQL injection vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the 'Pid' parameter of the Joomla comblog component. An attacker can exploit the vulnerability to access or modify database data...
Sage XRT Treasury database fails to properly restrict access to authorized users
Overview Sage XRT Treasury, version 3, fails to properly restrict database access to authorized users, which may enable any authenticated user to gain full access to privileged database functions. Description CWE-639: Authorization Bypass Through User-Controlled Key - CVE-2017-3183Sage XRT...
Joomla com_onlinejudge component 'Itemid' parameter SQL injection vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the 'Itemid' parameter of the Joomla comonlinejudge component. An attacker can exploit the vulnerability to access or modify database data...