CVE-2024-37857

SQL Injection vulnerability in Lost and Found Information System 1.0 allows a remote attacker to escalate privileges via id parameter to php-lfis/admin/categories/viewcategory.php...

CVE-2024-0485

A vulnerability, which was classified as critical, was found in code-projects Fighting Cock Information System 1.0. Affected is an unknown function of the file admin/pages/tables/addcon.php. The manipulation of the argument id leads to sql injection. It is possible to launch the attack remotely...

CVE-2022-2807

SQL Injection vulnerability in Algan Software Prens Student Information System allows SQL Injection. This issue affects Prens Student Information System: before 2.1.11...

CVE-2021-27019

PuppetDB logging included potentially sensitive system information...

Care2x Integrated Hospital Info System 2.7 - (Multiple) SQL Injection Vulnerability

Exploit Title: Care2x Integrated Hospital Info System 2.7 - 'Multiple' SQL Injection Exploit Author: securityforeveryone.com Vendor Homepage: https://care2x.org Software Link: https://sourceforge.net/projects/care2002/ Version: = 2.7 Alpha Tested on: Linux/Windows Researchers : Security For...

CVE-2018-2381

CVE-2018-2381 affects SAP ERP Financials components (SAP_APPL 6.00–6.06, 6.16; SAP_FIN 6.17–7.30; S4CORE 1.00–1.02). The issue is insufficient authorization checks for an authenticated user, enabling escalation of privileges within the application. The description consistently states privilege el...

Patron Info System SQL Injection Vulnerability

Patron Info System is a customer information system. Patron Info System has a remote sql injection vulnerability that allows remote attackers to execute malicious sql commands to connect to dbms...

Patron Info System SQL Injection

Document Title: =============== Patron Info System - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1784 Release Date: ============= 2016-03-21 Vulnerability Laboratory ID VL-ID: ==================================== 1784 Comm...

Patron Info System - SQL Injection Vulnerability

No description provided by source...

Patron Info System - SQL Injection Vulnerability

Document Title: =============== Patron Info System - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1784 Release Date: ============= 2016-03-21 Vulnerability Laboratory ID VL-ID: ==================================== 1784 Comm...

Patron Info System - SQL Injection Vulnerability

Document Title: =============== Patron Info System - SQL Injection Vulnerability References Source: ==================== http://www.vulnerability-lab.com/getcontent.php?id=1784 Release Date: ============= 2016-03-21 Vulnerability Laboratory ID VL-ID: ==================================== 1784 Comm...

ZDSoft教育信息发布系统 后台 /user/infoSearch.aspx 参数searchStr SQL 注入漏洞

No description provided by source...

JCMS政府信息公开系统在/lm/front/reg_2.jsp存在本地文件包含漏洞

No description provided by source...

Eagle Software Aeries Student Information System 3.7.2.2/3.8.2.8 Labels.asp Term Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/27924/info Aeries Student Information System is prone to multiple input-validation vulnerabilities, including multiple SQL-injection issues and an HTML-injection issue, because it fails to sufficiently sanitize...

Eagle Software Aeries Student Information System 3.7.2.23.8.2.8 - Comments.asp?FC SQL Injection

Eagle Software Aeries Student Information System 3.7.2.23.8.2.8 - Comments.asp?FC SQL Injection source: https://www.securityfocus.com/bid/27924/info Aeries Student Information System is prone to multiple input-validation vulnerabilities, including multiple SQL-injection issues and an HTML-injecti...

Eagle Software Aeries Student Information System 3.7.2.23.8.2.8 - Labels.asp?Term SQL Injection

Eagle Software Aeries Student Information System 3.7.2.23.8.2.8 - Labels.asp?Term SQL Injection source: https://www.securityfocus.com/bid/27924/info Aeries Student Information System is prone to multiple input-validation vulnerabilities, including multiple SQL-injection issues and an HTML-injecti...

Eagle Software Aeries Student Information System 3.7.2.23.8.2.8 - ClassList.asp?Term SQL Injection

Eagle Software Aeries Student Information System 3.7.2.23.8.2.8 - ClassList.asp?Term SQL Injection source: https://www.securityfocus.com/bid/27924/info Aeries Student Information System is prone to multiple input-validation vulnerabilities, including multiple SQL-injection issues and an...

CARE2X php Integ Hospital Info System 2G Deployment 2.2 Multi Remote File Include

X---- w w w . u N k n 0 w n . e u ----X CARE2X php Integ Hospital Info System 2G Deployment 2.2 Multi Remote File Include ::Home: http://care2x.org/ http://sourceforge.net/projects/care2002/ ::Vuln Type : Remote File Include RFI ::Discovered by : iNs ::Vuln Code: /language/en/encopyrite.php ?php...