17 matches found
CVE-2023-6145
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in İstanbul Soft Informatics and Consultancy Limited Company Softomi Advanced C2C Marketplace Software allows SQL Injection.This issue affects Softomi Advanced C2C Marketplace Software: before 1212202...
CVE-2023-6145
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in İstanbul Soft Informatics and Consultancy Limited Company Softomi Advanced C2C Marketplace Software allows SQL Injection. This issue affects Softomi Advanced C2C Marketplace Software: before 121220...
CVE-2023-6145
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in İstanbul Soft Informatics and Consultancy Limited Company Softomi Advanced C2C Marketplace Software allows SQL Injection. This issue affects Softomi Advanced C2C Marketplace Software: before 121220...
Sql injection
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Istanbul Soft Informatics and Consultancy Limited Company Softomi Advanced C2C Marketplace Software allows SQL Injection.This issue affects Softomi Advanced C2C Marketplace Software: before 1212202...
CVE-2023-6145
CVE-2023-6145 affects Softomi Advanced C2C Marketplace Software (Istanbul Soft Informatics and Consultancy) prior to version 12122023. Root cause is improper neutralization of special elements in SQL commands, enabling SQL injection (high impact: confidentiality, integrity, and availability all a...
CVE-2023-6145 SQLi in Softomi E-commerce Software
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in İstanbul Soft Informatics and Consultancy Limited Company Softomi Advanced C2C Marketplace Software allows SQL Injection. This issue affects Softomi Advanced C2C Marketplace Software: before 121220...
Command injection
Sharetribe Go is a source available marketplace software. In affected versions operating system command injection is possible on installations of Sharetribe Go, that do not have a secret AWS Simple Notification Service SNS notification token configured via the snsnotificationtoken configuration...
CVE-2021-41280
CVE-2021-41280 affects Sharetribe Go (OS configuration) where an operating system command injection is possible in affected versions that do not configure the secret SNS notification token via the sns_notification_token parameter. The issue is mitigated by upgrading to version 10.2.1, where the p...
Nlance - Freelance Marketplace Software v2.2 - SQL Injection
Nlance - Freelance Marketplace Software v2. 2 - SQL Injection Nlance - Freelance Marketplace Software v2. 2, The presence of the parameter filter is not strict, leading to a sql injection vulnerability, if the other server is turned on the error display, can be directly used Google Dork: N/A...
Busewe 1.2 SQL Injection
Exploit Title: Busewe - Website Marketplace Software v1.2 - SQL Injection Google Dork: N/A Date: 09.03.2017 Vendor Homepage: https://www.ncrypted.net/ Software: https://www.ncrypted.net/busewe Demo: http://demo.ncryptedprojects.com/busewe/ Version: 1.2 Tested on: Win7 x64, Kali Linux x64 Exploit...
Nlance 2.2 - SQL Injection Vulnerability
Exploit for php platform in category web applications Exploit Title: Nlance - Freelance Marketplace Software v2.2 - SQL Injection Google Dork: N/A Date: 09.03.2017 Vendor Homepage: https://www.ncrypted.net/ Software: https://www.ncrypted.net/nlance Demo: http://demo.ncryptedprojects.com/nlance-en...
Nlance 2.2 - SQL Injection
Nlance 2.2 - SQL Injection Exploit Title: Nlance - Freelance Marketplace Software v2.2 - SQL Injection Google Dork: N/A Date: 09.03.2017 Vendor Homepage: https://www.ncrypted.net/ Software: https://www.ncrypted.net/nlance Demo: http://demo.ncryptedprojects.com/nlance-ent/ Version: 2.2 Tested on:...
Busewe 1.2 - SQL Injection
Busewe 1.2 - SQL Injection Exploit Title: Busewe - Website Marketplace Software v1.2 - SQL Injection Google Dork: N/A Date: 09.03.2017 Vendor Homepage: https://www.ncrypted.net/ Software: https://www.ncrypted.net/busewe Demo: http://demo.ncryptedprojects.com/busewe/ Version: 1.2 Tested on: Win7...
Nlance Freelance Marketplace Software 2.2 SQL Injection
Exploit Title: Nlance - Freelance Marketplace Software v2.2 - SQL Injection Google Dork: N/A Date: 09.03.2017 Vendor Homepage: https://www.ncrypted.net/ Software: https://www.ncrypted.net/nlance Demo: http://demo.ncryptedprojects.com/nlance-ent/ Version: 2.2 Tested on: Win7 x64, Kali Linux x64...
Busewe 1.2 - SQL Injection
Exploit Title: Busewe - Website Marketplace Software v1.2 - SQL Injection Google Dork: N/A Date: 09.03.2017 Vendor Homepage: https://www.ncrypted.net/ Software: https://www.ncrypted.net/busewe Demo: http://demo.ncryptedprojects.com/busewe/ Version: 1.2 Tested on: Win7 x64, Kali Linux x64 Exploit...
Buy and Sell Market Place Software - SQL Injection Vulnerability
Exploit for php platform in category web applications Vulnerability: SQL Injection + Authentication Bypass Date: 18.01.2017 Vendor Homepage: http://www.scriptgiant.com/ Script Name: Buy and Sell Market Place Software Script Buy Now:...
Command & Control (Lite) - Dangerous filesystem permissions, Insecure KeyStore vulnerabilities
HackApp vulnerability scanner discovered that application Command & Control Lite published at the 'play' market has multiple vulnerabilities...