Lucene search
K

10 matches found

CNVD
CNVD
added 2025/10/17 12:0 a.m.2 views

Automated Voting System add_candidate_modal.php File SQL Injection Vulnerability

Automated Voting System is an automated voting system. Automated Voting System suffers from a SQL injection vulnerability that stems from the lack of validation of the parameter firstname in file /admin/addcandidatemodal.php for externally entered SQL statements. An attacker can exploit this...

8.8CVSS8.3AI score0.00386EPSS
Exploits1References1
CNVD
CNVD
added 2024/03/29 12:0 a.m.22 views

Online Book System index.php File SQL Injection Vulnerability

Online Book System is an online booking system. A SQL injection vulnerability exists in version 1.0 of Online Book System, which originates from a lack of validation of externally entered SQL statements in the username/password/loginusername/loginpassword parameters of the /index.php file. An...

9.8CVSS7.9AI score0.00975EPSS
Exploits1References1
CNVD
CNVD
added 2023/03/23 12:0 a.m.26 views

IBM Security Guardium SQL Injection Vulnerability (CNVD-2023-20081)

IBM Security Guardium is a suite of platforms from International Business Machines IBM that provide data protection capabilities. The platform includes features such as custom UI, report management, and streamlined audit process construction.IBM Security Guardium Key Lifecycle Manager is vulnerab...

9.8CVSS9.5AI score0.00971EPSS
Exploits0References1
CNVD
CNVD
added 2022/09/28 12:0 a.m.31 views

Rocket.Chat SQL Injection Vulnerability

Rocket.Chat, an open source team chat software, is vulnerable to SQL injection, which stems from the application's lack of validation of externally entered SQL statements. An attacker could exploit the vulnerability to retrieve a reset password token via 2fa secret or 2fa secret...

8.8CVSS2.8AI score0.01088EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/30 12:0 a.m.31 views

Library Management System SQL Injection Vulnerability (CNVD-2022-61297)

Library Management System is a library management system with QR code attendance and automatic library card generation. version 1.0 of Library Management System is vulnerable to SQL injection, which stems from a missing parameter id in the file /librarian/bookdetails.php validation of externally...

6.5CVSS3.3AI score0.01045EPSS
Exploits1Affected Software1
CNVD
CNVD
added 2022/06/09 12:0 a.m.16 views

Complete Online Job Search System SQL注入漏洞(CNVD-2022-48790)

Complete Online Job Search System is an online job search system. SQL injection vulnerability exists in Complete Online Job Search System, which originates from /eris/admin/employee/index.php?view=edit&id=page Lack of validation of externally entered SQL statements. An attacker could use this...

7.2CVSS2.7AI score0.00946EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/09 12:0 a.m.11 views

Badminton Center Management System SQL注入漏洞(CNVD-2022-44732)

Badminton Center Management System is a badminton center management system from Carlo Montero's personal developer. It provides an online and automated platform for badminton centers to manage their daily transactions and records. Badminton Center Management System version v1.0 is vulnerable to S...

7.2CVSS3.9AI score0.00795EPSS
Exploits0References1
CNVD
CNVD
added 2022/06/09 12:0 a.m.23 views

Online Ordering System SQL Injection Vulnerability (CNVD-2022-55723)

Online Ordering System is a multi-store ordering system that can be used by any small business.An SQL injection vulnerability exists in Online Ordering System version 2.3.2, which originates from /ordering/admin/stockin/index.php?view=edit&id= The page lacks validation of externally entered SQL...

9.8CVSS4.4AI score0.01067EPSS
Exploits1References1
CNVD
CNVD
added 2022/05/18 12:0 a.m.26 views

Calibre-Web SQL Injection Vulnerability

Calibre-Web is a Web application for browsing, reading and downloading eBooks from the Calibre database.A SQL injection vulnerability exists in versions prior to Calibre-Web 0.6.18.The vulnerability stems from the application's lack of validation of externally entered SQL statements, which can be...

7.5CVSS6.2AI score0.01118EPSS
Exploits0Affected Software1
CNVD
CNVD
added 2022/03/31 12:0 a.m.44 views

Joomla! SQL Injection Vulnerability (CNVD-2022-64102)

Joomla! is a set of forum components used in the Joomla! content management system. SQL injection vulnerabilities exist in versions 3.0.0 through 3.10.6 and 4.0.0 through 4.1.0. The vulnerability stems from the application's lack of validation of externally entered SQL statements. An attacker cou...

9.8CVSS4.4AI score0.01059EPSS
Exploits0References1
Rows per page
Query Builder