Oracle MySQL Server 8.0.0 - 8.0.25 Security Update (cpujul2025) - Windows

Oracle MySQL Server is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

Unspecified Vulnerability in Oracle MySQL Server (CNVD-2021-04763)

Oracle MySQL is an open source relational database management system.MySQL Server mysqld is the MySQL server, the main program that performs most of the work in a MySQL installation. An unspecified vulnerability exists in the Server: DDL component of Oracle MySQL Server 8.0.22 and earlier. An...

Oracle MySQL Denial of Service Vulnerability (CNVD-2020-29573)

Oracle MySQL is an open source relational database management system from Oracle Corporation, of which MySQL Server is a database server component. A security vulnerability exists in the InnoDB component of Oracle MySQL for MySQL Server 8.0.19 and prior versions. An attacker could exploit this...

Unspecified Vulnerability in Oracle MySQL Server (CNVD-2016-05398)

Oracle MySQL Server is a lightweight relational database system. A security vulnerability exists in Oracle MySQL Server 5.7.12 and earlier versions, which can be exploited by an authenticated attacker to compromise integrity, availability...

ACC IMoveis 4.0 - SQL Injection Vulnerability

No description provided by source. Exploit Title : iMoveis SQL Injection Vulnerability Date : 26/10/2010 Author : EraGoN Software link : http://baixar7.com/download/acc-imoveis-script-php.rar/3d1e7bf4b9 Version : 1.1 Tested on : Linux / Windows XP Dork : inurl:imoveis.php?id= Error You have an...

AuraCMS多个SQL注入漏洞

CVE ID：CVE-2014-1401 auraCMS是一款基于PHP的WEB应用程序。 AuraCMS存在SQL注入漏洞。由于在程序SQL查询使用之前未能充分过滤未明的输入，允许远程攻击者在后端数据库中注入或操纵SQL查询，允许任意数据的操纵或披露。 0 Auracms 2.3 厂商补丁： Auracms ----- 1月30日后更新的Auracms 2.3版本以修复此漏洞，建议用户下载使用： http://auracms.org 1.The exploitation example below displays version of MySQL server:...

SQL Injection in AdRotate

High-Tech Bridge Security Research Lab discovered vulnerability in AdRotate, which can be exploited to perform SQL Injection attacks. 1 SQL Injection in AdRotate: CVE-2014-1854 The vulnerability exists due to insufficient validation of "track" HTTP GET parameter passed to...

Horizon QCMS "/download.php" SQL注入漏洞

CVE ID:CVE-2013-7139 Horizon QCMS是支持PHP与MySQL的开放源码的Horizon快速内容管理系统。 该漏洞的存在是由于传递到"/download.php"脚本的"category" HTTP POST参数未被正确过滤，未经身份验证的远程攻击者可以在应用数据库中执行任意SQL命令。 0 Horizon QCMS=4.0 厂商补丁： Horizon ----- Horizon 4.0版本以修复此漏洞，建议用户下载使用： http://sourceforge.net/projects/hnqcms/files/patches/ The exploitatio...

SQL injection in phpWebThing 1.4.4

Vulnerable: phpWebThings 1.4.4 website : http://phpwebthings.org The bug in download.php ThE Exploit : http://www.target.com/download.php?file=|SQL ThE Error: You have an error in your SQL syntax. Check the manual that corresponds to your MySQL server version for the right syntax to use near 'ord...