Sql injection

A vulnerability classified as critical has been found in Shipping 100 Fahuo100 up to 1.1. Affected is an unknown function of the file member/login.php. The manipulation of the argument Mpwd leads to sql injection. The complexity of an attack is rather high. The exploitability is told to be...

CVE-2023-7188

CVE-2023-7188 affects Shipping 100 Fahuo100 up to version 1.1. The vulnerability is in an unknown function in the file member/login.php where manipulation of the argument M_pwd leads to an SQL injection . Reported impact is high across confidentiality, integrity, and availability. Multiple connec...

manttus.com XSS vulnerability

Open Bug Bounty ID: OBB-635414 Description| Value ---|--- Affected Website:| manttus.com Open Bug Bounty Program:| Create your bounty program now. It's open and free. Vulnerable Application:| Custom Code Vulnerability Type:| XSS Cross Site Scripting / CWE-79 CVSSv3 Score:| 6.1...

clarksvillepartnershipdata.com XSS vulnerability

Vulnerable URL: http://clarksvillepartnershipdata.com/member/login.php?msg=Business Analyst Details: Description| Value ---|--- Patched:| No Latest check for patch:| 12.12.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| Unknown / Not calculated VIP website...

phpcms2008 sp4 /member/login.php 跨站漏洞

Phpcms 是国内领先的网站内容管理系统，同时也是一个开源的PHP开发框架。Phpcms由内容模型、会员、问吧、专题、财务、订单、广告、邮件订阅、 短消息、自定义表单、全站搜索等20多个功能模块组成，内置新闻、图片、下载、信息、产品5大内容模型。Phpcms 采用模块化开发，支持自定义内容模型和会员模型，并且可以自定义字段。 member/login.php对forward参数没有进行有效的处理，造成跨站漏洞 phpcms2008 sp4 厂商补丁： PHPCMS ------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本：...

dedecms <=5.7 member-login.php 跨站脚本攻击漏洞

No description provided by source...