23 matches found
EUVD-2021-32520
Malicious code in bioql PyPI...
CVE-2021-45803
MartDevelopers iResturant 1.0 is vulnerable to SQL Injection. SQL Injection occurs because this view parameter value is added to the SQL query without additional verification when viewing reservation...
MartDevelopers iResturant SQL Injection Vulnerability (CNVD-2022-91164)
MartDevelopers Iresturant is an open source lightweight restaurant Erp from MartDevelopers Kenya. used to integrate social restaurant operations into one system. martDevelopers iResturant 1.0 is vulnerable to a SQL injection vulnerability that stems from adding email and phone parameter values ar...
MartDevelopers iResturant SQL Injection Vulnerability (CNVD-2022-91165)
MartDevelopers Iresturant is an open source lightweight restaurant Erp from MartDevelopers Kenya. used to integrate social restaurant operations into one system. a SQL injection vulnerability exists in MartDevelopers iResturant v1.0, which stems from adding this when viewing a reservation view...
CVE-2021-46113
In MartDevelopers KEA-Hotel-ERP open source as of 12-31-2021, a remote code execution vulnerability can be exploited by uploading PHP files using the file upload vulnerability in this service...
CVE-2021-45802
MartDevelopers iResturant 1.0 is vulnerable to SQL Injection. SQL Injection occurs because the email and phone parameter values are added to the SQL query without any verification at the time of membership registration...
CVE-2021-45803
MartDevelopers iResturant 1.0 is vulnerable to SQL Injection. SQL Injection occurs because this view parameter value is added to the SQL query without additional verification when viewing reservation...
Sql injection
MartDevelopers iResturant 1.0 is vulnerable to SQL Injection. SQL Injection occurs because this view parameter value is added to the SQL query without additional verification when viewing reservation...
Remote code execution
In MartDevelopers KEA-Hotel-ERP open source as of 12-31-2021, a remote code execution vulnerability can be exploited by uploading PHP files using the file upload vulnerability in this service...
Sql injection
MartDevelopers iResturant 1.0 is vulnerable to SQL Injection. SQL Injection occurs because the email and phone parameter values are added to the SQL query without any verification at the time of membership registration...
CVE-2021-46113
In MartDevelopers KEA-Hotel-ERP open source as of 12-31-2021, a remote code execution vulnerability can be exploited by uploading PHP files using the file upload vulnerability in this service...
CVE-2021-46113
CVE-2021-46113 affects MartDevelopers KEA-Hotel-ERP (open source). A remote code execution vulnerability is exploited via uploading PHP files through the service’s file upload feature. The issue is documented across multiple sources (NVD, CVE listing, CNNVD) and indicates RCE with potential unaut...
CVE-2021-45803
CVE-2021-45803 affects MartDevelopers iResturant 1.0. The vulnerability is a SQL Injection where the view parameter value is concatenated into a SQL query when viewing a reservation, enabling unauthorized DB access. Root cause: lack of input validation/parameterization in the SQL used to fetch re...
CVE-2021-45803
MartDevelopers iResturant 1.0 is vulnerable to SQL Injection. SQL Injection occurs because this view parameter value is added to the SQL query without additional verification when viewing reservation...
CVE-2021-45802
MartDevelopers iResturant 1.0 is vulnerable to SQL Injection due to unsanitized email and phone values used in the membership registration SQL query. The issue is documented across multiple sources (CNVD/CNNVD/NVD) with descriptions stating that attacker-supplied input can alter SQL commands to a...
CVE-2021-45802
MartDevelopers iResturant 1.0 is vulnerable to SQL Injection. SQL Injection occurs because the email and phone parameter values are added to the SQL query without any verification at the time of membership registration...
MartDevelopers KEA-Hotel-ERP 代码问题漏洞
MartDevelopers KEA-Hotel-ERP is an open source lightweight hotel enterprise resource planning system. A security vulnerability exists in MartDevelopers KEA-Hotel-ERP that can be exploited by an attacker to upload PHP files using a file upload vulnerability in the service to exploit a remote code...
MartDevelopers Iresturant SQL注入漏洞
MartDevelopers Iresturant is an open source lightweight restaurant Erp from MartDevelopers Kenya. used to integrate social restaurant operations into one system. martDevelopers iResturant 1.0 is vulnerable to a SQL injection vulnerability that stems from adding email and phone parameter values ar...
MartDevelopers Iresturant SQL注入漏洞
MartDevelopers Iresturant is an open source lightweight restaurant Erp from MartDevelopers Kenya. used to integrate social restaurant operations into one system. a SQL injection vulnerability exists in MartDevelopers iResturant v1.0, which stems from adding this when viewing a reservation view...
Cross site scripting
MartDevelopers Inc iResturant v1.0 allows Stored XSS by placing a payload in the username field during a login attempt. When an administrator looks at the log of failed logins, the XSS payload will be executed...