CVE-2017-20257

Joomla! Component Quiz Deluxe 3.7.4 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL commands through the ajaxaction.flagquestion task. Attackers can inject malicious SQL code via the stuquizid or flagquest parameters to manipulate database...

Sql injection

SEMCMS 3.9 is vulnerable to SQL Injection. Due to the lack of security checks on the input of the application, the attacker uses the existing application to inject malicious SQL commands into the background database engine for execution, and sends some attack codes as commands or query statements...

PHPGURUKUL Zoo Management System SQL Injection Vulnerability

PHPGURUKUL Zoo Management System is a zoo management system from the PHPGurukul Phpgurukul team. PHPGURUKUL Zoo Management System v1.0 is vulnerable to SQL injection, which stems from a lack of filtering in the classid parameter in /publichtml/animals, and can be exploited by attackers to execute...

Online Banking System SQL Injection Vulnerability (CNVD-2022-71426)

Online Banking System is a simple banking system project used to manage bank customers' accounts and process basic customer transactions. A SQL injection vulnerability exists in Online Banking System, which stems from the lack of filtering and transfer of SQL data in the employee ID and employee...

SourceCodester Simple Student Information System SQL Injection Vulnerability

Simple Student Information System is a web-based application platform that helps a university or college manage student information and academic records. SourceCodester Simple Student Information System version 1.0 is vulnerable to SQL injection, which can be exploited by attackers to send...