Lucene search
K

80 matches found

CNVD
CNVD
added 2022/06/28 12:0 a.m.11 views

Prison Management System SQL Injection Vulnerability (CNVD-2022-48397)

Prison Management System is a prison management system from Carlo Montero's personal developer. v1.0 of Prison Management System contains a SQL injection vulnerability that originates in the application /pms/admin/visits/managevisit.php The vulnerability is caused by the lack of SQL data filter...

8.8CVSS2.7AI score0.01199EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/28 12:0 a.m.17 views

Prison Management System SQL Injection Vulnerability (CNVD-2022-48396)

Prison Management System is a prison management system from Carlo Montero's personal developer. prison Management System v1.0 is vulnerable to SQL injection, which originates from the application /pms/admin/user/manageuser.php in the id parameter in /pms/admin/user/manageuser.php is missing the S...

7.2CVSS3.1AI score0.01183EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/28 12:0 a.m.11 views

Prison Management System SQL Injection Vulnerability (CNVD-2022-48403)

Prison Management System is a prison management system from Carlo Montero's personal developer. prison Management System v1.0 is vulnerable to SQL injection, which originates in the application /pms/admin/visits/viewvisit.php in the id parameter in /pms/admin/visits/viewvisit.php is missing the S...

8.8CVSS3.1AI score0.01199EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/28 12:0 a.m.14 views

Prison Management System SQL Injection Vulnerability (CNVD-2022-48390)

Prison Management System is a prison management system from Carlo Montero's personal developer. prison Management System v1.0 is vulnerable to SQL injection, which originates in the application /pms/admin/cells/managecell.php in the id parameter in /pms/admin/cells/managecell.php is missing the S...

8.8CVSS3.1AI score0.01209EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/20 12:0 a.m.12 views

Sourcecodester Hospital Patient Records Management System SQL注入漏洞(CNVD-2022-48756)

Sourcecodester Hospital Patient Records Management System is a web-based application that provides hospitals with an automated platform to store and manage their patient records. Management System is vulnerable to a SQL injection vulnerability that originates in the...

7.2CVSS2.1AI score0.00909EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/20 12:0 a.m.24 views

Online Fire Reporting System SQL Injection Vulnerability (CNVD-2022-55737)

Online Fire Reporting System is an online fire reporting system from Carlo Montero's personal developer. version v1.0 of Online Fire Reporting System is vulnerable to SQL injection, which stems from a GET parameter in /report/list.php that lacks validation for external The vulnerability is caused...

6.5CVSS4.1AI score0.00891EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/20 12:0 a.m.16 views

Sourcecodester Hospital Patient Records Management System SQL注入漏洞(CNVD-2022-48746)

Sourcecodester Hospital Patient Records Management System is a Web-based application that provides hospitals with an automated platform to store and manage their patient records. Management System is vulnerable to SQL injection, which originates from /hprms/admin/?page=user/manageuser&id= page...

7.2CVSS2.2AI score0.00909EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/17 12:0 a.m.19 views

Advanced School Management System SQL Injection Vulnerability (CNVD-2022-68956)

Advanced School Management System, a school management system by Angel Jude Reyes Suarez, is a SQL injection vulnerability in version v1.0 of Advanced School Management System, which originates from /school/model/ getclassroom.php?id=The page lacks validation for external input SQL statements,...

6.5CVSS2.9AI score0.00909EPSS
Exploits1Affected Software1
CNVD
CNVD
added 2022/06/17 12:0 a.m.21 views

Advanced School Management System SQL Injection Vulnerability (CNVD-2022-68955)

Advanced School Management System is a school management system developed by Angel Jude Reyes Suarez. v1.0 of Advanced School Management System is vulnerable to SQL injection, which originates from /school/model /getadminprofile.php?myindex=The page lacks validation for external input SQL...

6.5CVSS2.6AI score0.00909EPSS
Exploits1Affected Software1
CNVD
CNVD
added 2022/06/17 12:0 a.m.15 views

Advanced School Management System SQL Injection Vulnerability (CNVD-2022-68957)

Advanced School Management System, a school management system by Angel Jude Reyes Suarez, a personal developer, has a SQL injection vulnerability in version v1.0, which originates in /school/model/ getevents.php?eventid=The page lacks validation for external input SQL statements, which could be...

6.5CVSS4.4AI score0.00909EPSS
Exploits1Affected Software1
CNVD
CNVD
added 2022/06/17 12:0 a.m.25 views

YouDianCMS SQL Injection Vulnerability (CNVD-2022-59019)

YouDianCMS is a website CMS. A SQL injection vulnerability exists in YouDianCMS v9.5.0, which originates from the lack of validation of the IdList parameter at /App/Lib/Action/Home/ApiAction.class.php against external SQL input. This vulnerability can be exploited to execute illegal SQL commands ...

9.8CVSS9.9AI score0.01026EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/15 12:0 a.m.16 views

Product Show Room Site SQL Injection Vulnerability (CNVD-2022-77049)

Product Show Room Site is a product showroom site from Carlo Montero's personal developer. version 1.0 of Product Show Room Site is vulnerable to a SQL injection vulnerability that originates in /psrs/admin/fields/managefield.php?id=page. SQL injection problem, an attacker can use this...

7.2CVSS5.5AI score0.00909EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/15 12:0 a.m.13 views

Product Show Room Site SQL Injection Vulnerability (CNVD-2022-77050)

Product Show Room Site is a product showroom site from Carlo Montero's personal developer. version 1.0 of Product Show Room Site is vulnerable to a SQL injection vulnerability that originates in /psrs/admin/fields/viewfield.php?id=page. SQL injection problem, an attacker can use this vulnerabilit...

7.2CVSS5.5AI score0.00909EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/09 12:0 a.m.11 views

Badminton Center Management System SQL注入漏洞(CNVD-2022-44722)

Badminton Center Management System is a badminton center management system from Carlo Montero's personal developer. It provides an online and automated platform for badminton centers to manage their daily transactions and records. version v1.0 of Badminton Center Management System is vulnerable t...

7.2CVSS4.1AI score0.00946EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/09 12:0 a.m.26 views

Elitecms SQL Injection Vulnerability (CNVD-2022-57759)

Elitecms is a Web content management from elitecms India. elitecms version 1.01 has a SQL injection vulnerability that originates from the lack of validation of external input SQL statements on the /admin/addpost.php page, which can be exploited by attackers to execute illegal SQL commands to ste...

9.8CVSS6.6AI score0.01081EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/09 12:0 a.m.15 views

Complete Online Job Search System SQL注入漏洞(CNVD-2022-48789)

Complete Online Job Search System is an online job search system. SQL injection vulnerability exists in Complete Online Job Search System, which originates from /eris/admin/company/index.php?view=edit&id=page missing validation of external input SQL statements. An attacker could use this...

7.2CVSS2.7AI score0.04522EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/09 12:0 a.m.23 views

Wedding Management System SQL Injection Vulnerability (CNVD-2022-54281)

Wedding Management System is a wedding planning management system by John Paul Lim Gabule, a personal developer. v1.0 of Wedding Management System is vulnerable to SQL injection, which originates from the admin/clientassign.php page that lacks An attacker can use this vulnerability to execute...

7.2CVSS3.3AI score0.00958EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/09 12:0 a.m.16 views

Online Fire Reporting System SQL Injection Vulnerability (CNVD-2022-55738)

Online Fire Reporting System is an online fire reporting system from Carlo Montero's personal developer. version v1.0 of Online Fire Reporting System is vulnerable to SQL injection, which originates from /ofrs/admin/?page=reports& date=Lack of validation of external input SQL statements, an...

7.2CVSS4.8AI score0.04903EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/09 12:0 a.m.25 views

Online Fire Reporting System SQL Injection Vulnerability (CNVD-2022-55744)

Online Fire Reporting System is an online fire reporting system from Carlo Montero's personal developer. version v1.0 of Online Fire Reporting System is vulnerable to SQL injection, which originates from /ofrs/admin/requests/take action.php?id=Lack of validation of external input SQL statements...

7.2CVSS4.1AI score0.04863EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/09 12:0 a.m.22 views

ChatBot App with Suggestion SQL注入漏洞

ChatBot App with Suggestion is a ChatBot application with suggestion by Carlo Montero's personal developer. v1.0 of ChatBot App with Suggestion is vulnerable to SQL injection, which originates from /simplechatbot/ admin/?page=user/manageuser&id=The page lacks validation for external input SQL...

9.8CVSS5.3AI score0.01081EPSS
Exploits1References1
Rows per page
Query Builder