Lucene search
+L

53 matches found

CVE
CVE
added 2018/08/28 7:0 p.m.55 views

CVE-2018-15873

CVE-2018-15873 describes a SQL Injection in Sentrifugo HRMS 3.2 exposed via the deptid parameter. Connected sources confirm a blind SQL injection in the POST endpoint /index.php/servicedeskconf/getemployees/format/html, enabling an attacker to read database information. Affected version is 3.2 (a...

9.8CVSS9.8AI score0.01135EPSS
Exploits5References1Affected Software1
exploitpack
exploitpack
added 2018/08/27 12:0 a.m.54 views

Sentrifugo HRMS 3.2 - deptid SQL Injection

Sentrifugo HRMS 3.2 - deptid SQL Injection Exploit Title: Sentrifugo HRMS 3.2 - 'deptid' SQL Injection Exploit Author: Javier Olmedo Website: https://hackpuntes.com Date: 2018-08-26 Google Dork: N/A Vendor: http://www.sapplica.com Software Link: http://www.sentrifugo.com/download Affected Version...

7.5CVSS0.01135EPSS
Exploits5
Exploit DB
Exploit DB
added 2018/08/27 12:0 a.m.41 views

Sentrifugo HRMS 3.2 - 'deptid' SQL Injection

Exploit Title: Sentrifugo HRMS 3.2 - 'deptid' SQL Injection Exploit Author: Javier Olmedo Website: https://hackpuntes.com Date: 2018-08-26 Google Dork: N/A Vendor: http://www.sapplica.com Software Link: http://www.sentrifugo.com/download Affected Version: 3.2 and possibly before Patched Version:...

9.8CVSS9.7AI score0.01135EPSS
Exploits5
seebug.org
seebug.org
added 2016/01/26 12:0 a.m.32 views

StrongSoft灾害预警系统 warn/AjaxHandle/AjaxOuterWarnForMerger.ashx DeptID参数SQL注入漏洞

注入链接:/warn/AjaxHandle/AjaxOuterWarnForMerger.ashx 注入参数:DeptID 【获取数据库版本】 /warn/AjaxHandle/AjaxOuterWarnForMerger.ashx?action=GetCheckIdByPid&DeptID=1'+AND+2709=SELECT+@@version+AND+'EcwM'='EcwM 【获取当前数据库】...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2016/01/13 12:0 a.m.19 views

农友软件建站系统erji.aspx deptid参数SQL注入漏洞

No description provided by source...

7.1AI score
Exploits0
CNVD
CNVD
added 2015/09/07 12:0 a.m.3 views

SQL Injection Vulnerability in Online Conference System of Beijing Gobit Technology Co.

Online meeting system Beijing Gobitech Technology Co. A SQL injection vulnerability exists in the Online Conference System of Beijing Gobitech Technology Co. The parameter deptid is injected, which can be used by an attacker to launch an attack and obtain sensitive information from the database...

7.7AI score
Exploits0References1
NVD
NVD
added 2010/05/04 4:0 p.m.18 views

CVE-2010-1702

SQL injection vulnerability in submitticket.php in WHMCompleteSolution WHMCS 4.2 allows remote attackers to execute arbitrary SQL commands via the deptid parameter...

7.5CVSS8.4AI score0.00967EPSS
Exploits1References4
Prion
Prion
added 2010/05/04 4:0 p.m.15 views

Sql injection

SQL injection vulnerability in submitticket.php in WHMCompleteSolution WHMCS 4.2 allows remote attackers to execute arbitrary SQL commands via the deptid parameter...

7.5CVSS9.1AI score0.00967EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2010/05/04 3:0 p.m.49 views

CVE-2010-1702

CVE-2010-1702 : Affected software is WHMCompleteSolution (WHMCS) 4.2. The vulnerability is a SQL injection in submitticket.php via the deptid parameter, allowing remote attackers to execute arbitrary SQL commands. This can impact confidentiality, integrity, and availability as described by the NV...

7.5CVSS8.7AI score0.00967EPSS
Exploits1References4Affected Software1
Packet Storm
Packet Storm
added 2010/04/24 12:0 a.m.23 views

WHMCS Control SQL Injection

=Info======================================================================= Software: WHMCS control WHMCompleteSolution Sql Injection Vulnerability: Remote Sql Injection Google Dork: Powered by WHMCompleteSolution - or " inurl:WHMCS Off. site: www.MiXaTy.com...

0.4AI score
Exploits0
Prion
Prion
added 2009/09/03 5:30 p.m.16 views

Sql injection

SQL injection vulnerability in messagebox.php in OSI Codes PHP Live! 3.3 allows remote attackers to execute arbitrary SQL commands via the deptid parameter...

7.5CVSS9.1AI score0.00923EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2006/12/27 11:0 p.m.53 views

CVE-2006-6769

CVE-2006-6769 applies to PHP Live! 3.2.2 and earlier, with multiple XSS flaws. Vulnerable components/files include transcripts.php (search_string parameter), index.php (l parameter), phplive/index.php (login field), and phplive/message_box.php (deptid and x parameters). Exploits describe arbitrar...

6.8CVSS5.7AI score0.01299EPSS
Exploits4References5Affected Software1
securityvulns
securityvulns
added 2006/05/25 12:0 a.m.40 views

YLZH(right.php)Cross Site Scripting

========================== Discovery By: Breeeeh Site: www.alshmokh.com E-mail: [email protected] ========================== Example: /right.php?deptid=XSS...

1.3AI score
Exploits0
Rows per page
Query Builder