80 matches found
Prison Management System SQL Injection Vulnerability (CNVD-2022-48397)
Prison Management System is a prison management system from Carlo Montero's personal developer. v1.0 of Prison Management System contains a SQL injection vulnerability that originates in the application /pms/admin/visits/managevisit.php The vulnerability is caused by the lack of SQL data filter...
Prison Management System SQL Injection Vulnerability (CNVD-2022-48396)
Prison Management System is a prison management system from Carlo Montero's personal developer. prison Management System v1.0 is vulnerable to SQL injection, which originates from the application /pms/admin/user/manageuser.php in the id parameter in /pms/admin/user/manageuser.php is missing the S...
Prison Management System SQL Injection Vulnerability (CNVD-2022-48403)
Prison Management System is a prison management system from Carlo Montero's personal developer. prison Management System v1.0 is vulnerable to SQL injection, which originates in the application /pms/admin/visits/viewvisit.php in the id parameter in /pms/admin/visits/viewvisit.php is missing the S...
Prison Management System SQL Injection Vulnerability (CNVD-2022-48390)
Prison Management System is a prison management system from Carlo Montero's personal developer. prison Management System v1.0 is vulnerable to SQL injection, which originates in the application /pms/admin/cells/managecell.php in the id parameter in /pms/admin/cells/managecell.php is missing the S...
Sourcecodester Hospital Patient Records Management System SQL注入漏洞(CNVD-2022-48756)
Sourcecodester Hospital Patient Records Management System is a web-based application that provides hospitals with an automated platform to store and manage their patient records. Management System is vulnerable to a SQL injection vulnerability that originates in the...
Online Fire Reporting System SQL Injection Vulnerability (CNVD-2022-55737)
Online Fire Reporting System is an online fire reporting system from Carlo Montero's personal developer. version v1.0 of Online Fire Reporting System is vulnerable to SQL injection, which stems from a GET parameter in /report/list.php that lacks validation for external The vulnerability is caused...
Sourcecodester Hospital Patient Records Management System SQL注入漏洞(CNVD-2022-48746)
Sourcecodester Hospital Patient Records Management System is a Web-based application that provides hospitals with an automated platform to store and manage their patient records. Management System is vulnerable to SQL injection, which originates from /hprms/admin/?page=user/manageuser&id= page...
Advanced School Management System SQL Injection Vulnerability (CNVD-2022-68956)
Advanced School Management System, a school management system by Angel Jude Reyes Suarez, is a SQL injection vulnerability in version v1.0 of Advanced School Management System, which originates from /school/model/ getclassroom.php?id=The page lacks validation for external input SQL statements,...
Advanced School Management System SQL Injection Vulnerability (CNVD-2022-68955)
Advanced School Management System is a school management system developed by Angel Jude Reyes Suarez. v1.0 of Advanced School Management System is vulnerable to SQL injection, which originates from /school/model /getadminprofile.php?myindex=The page lacks validation for external input SQL...
Advanced School Management System SQL Injection Vulnerability (CNVD-2022-68957)
Advanced School Management System, a school management system by Angel Jude Reyes Suarez, a personal developer, has a SQL injection vulnerability in version v1.0, which originates in /school/model/ getevents.php?eventid=The page lacks validation for external input SQL statements, which could be...
YouDianCMS SQL Injection Vulnerability (CNVD-2022-59019)
YouDianCMS is a website CMS. A SQL injection vulnerability exists in YouDianCMS v9.5.0, which originates from the lack of validation of the IdList parameter at /App/Lib/Action/Home/ApiAction.class.php against external SQL input. This vulnerability can be exploited to execute illegal SQL commands ...
Product Show Room Site SQL Injection Vulnerability (CNVD-2022-77049)
Product Show Room Site is a product showroom site from Carlo Montero's personal developer. version 1.0 of Product Show Room Site is vulnerable to a SQL injection vulnerability that originates in /psrs/admin/fields/managefield.php?id=page. SQL injection problem, an attacker can use this...
Product Show Room Site SQL Injection Vulnerability (CNVD-2022-77050)
Product Show Room Site is a product showroom site from Carlo Montero's personal developer. version 1.0 of Product Show Room Site is vulnerable to a SQL injection vulnerability that originates in /psrs/admin/fields/viewfield.php?id=page. SQL injection problem, an attacker can use this vulnerabilit...
Badminton Center Management System SQL注入漏洞(CNVD-2022-44722)
Badminton Center Management System is a badminton center management system from Carlo Montero's personal developer. It provides an online and automated platform for badminton centers to manage their daily transactions and records. version v1.0 of Badminton Center Management System is vulnerable t...
Elitecms SQL Injection Vulnerability (CNVD-2022-57759)
Elitecms is a Web content management from elitecms India. elitecms version 1.01 has a SQL injection vulnerability that originates from the lack of validation of external input SQL statements on the /admin/addpost.php page, which can be exploited by attackers to execute illegal SQL commands to ste...
Complete Online Job Search System SQL注入漏洞(CNVD-2022-48789)
Complete Online Job Search System is an online job search system. SQL injection vulnerability exists in Complete Online Job Search System, which originates from /eris/admin/company/index.php?view=edit&id=page missing validation of external input SQL statements. An attacker could use this...
Wedding Management System SQL Injection Vulnerability (CNVD-2022-54281)
Wedding Management System is a wedding planning management system by John Paul Lim Gabule, a personal developer. v1.0 of Wedding Management System is vulnerable to SQL injection, which originates from the admin/clientassign.php page that lacks An attacker can use this vulnerability to execute...
Online Fire Reporting System SQL Injection Vulnerability (CNVD-2022-55738)
Online Fire Reporting System is an online fire reporting system from Carlo Montero's personal developer. version v1.0 of Online Fire Reporting System is vulnerable to SQL injection, which originates from /ofrs/admin/?page=reports& date=Lack of validation of external input SQL statements, an...
Online Fire Reporting System SQL Injection Vulnerability (CNVD-2022-55744)
Online Fire Reporting System is an online fire reporting system from Carlo Montero's personal developer. version v1.0 of Online Fire Reporting System is vulnerable to SQL injection, which originates from /ofrs/admin/requests/take action.php?id=Lack of validation of external input SQL statements...
ChatBot App with Suggestion SQL注入漏洞
ChatBot App with Suggestion is a ChatBot application with suggestion by Carlo Montero's personal developer. v1.0 of ChatBot App with Suggestion is vulnerable to SQL injection, which originates from /simplechatbot/ admin/?page=user/manageuser&id=The page lacks validation for external input SQL...