CVE-2024-1301

SQL injection vulnerability in Badger Meter Monitool affecting versions 4.6.3 and earlier. A remote attacker could send a specially crafted SQL query to the server via the jusername parameter and retrieve the information stored in the database...

CVE-2022-39813

Italtel NetMatch-S CI 5.2.0-20211008 allows Multiple Reflected/Stored XSS issues under NMSCIWebGui/jsecuritycheck via the jusername parameter, or NMSCIWebGui/actloglineview.jsp via the name or actLine parameter. An attacker leveraging this vulnerability could inject arbitrary JavaScript. The...

CVE-2018-13050

A SQL Injection vulnerability exists in Zoho ManageEngine Applications Manager 13.x before build 13800 via the jusername parameter in a /jsecuritycheck POST request...

SQL Injection Vulnerability in J_username Parameter of Spotlight Technology Air Quality Online Monitoring System

The Air Quality Online Monitoring System is a system produced by Spotlight Technology that can realize online automatic monitoring of regional air quality. A SQL injection vulnerability exists in the jusername parameter of Spotlight Technology's Air Quality Online Monitoring System, which allows...