CampCodes Supplier Management System SQL注入漏洞

CampCodes Supplier Management System is a supplier management system from CampCodes, Inc. A SQL injection vulnerability exists in Campcodes Supplier Management System version 1.0, which stems from incorrect manipulation of the parameter ID in the file /manufacturer/confirmorder.php, which could...

Online Shoe Store details.php File SQL Injection Vulnerability

Online Shoe Store is an online shoe store system. Online Shoe Store suffers from a SQL injection vulnerability that originates from the id parameter in the /details.php page that lacks validation of externally entered SQL statements. An attacker can exploit this vulnerability to execute illegal S...

CVE-2024-32370

An issue in HSC Cybersecurity HC Mailinspector 5.2.17-3 through 5.2.18 allows a remote attacker to obtain sensitive information via a crafted payload to the id parameter in the mliSystemUsers.php component...

Online Computer and Laptop Store SQL注入漏洞

Online Computer and Laptop Store is an online computer and laptop store by Carlo Montero Personal Developer. SourceCodester Online Computer and Laptop Store version 1.0 suffers from an SQL injection vulnerability that stems from the presence of a SQL injection vulnerability that allows an attacke...

CSCMS Music Portal System SQL注入漏洞

CSCMS Music Portal System is a diversified content management system from China Sunseeker Network Technology CSCMS, Inc. A SQL injection vulnerability exists in CSCMS Music Portal System, which stems from the missing validation of the id parameter in /admin.php/Label/pagedel for external input SQ...

CVE-2017-16605

This vulnerability allows remote attackers to overwrite arbitrary files on vulnerable installations of NetGain Systems Enterprise Manager 7.2.730 build 1034. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw...