SQL Injection Vulnerability in Rural Three Capitals Comprehensive Information Management Platform of Shandong Nongyou Software Co.

It is a comprehensive information management platform that integrates rural assets, funds, and resources; the platform's bidding management system does not filter inputs during login, resulting in malicious sql statements that can be executed to access sensitive database information; SQL injectio...

Nongyou agricultural integrity of the system neiye. aspx parameter id SQL injection vulnerability

No description provided by source...

Farmers-government system jwhxq. aspx parameter id SQL injection vulnerability

No description provided by source. !/usr/bin/env python coding: utf-8 from pocsuite.api.request import req from pocsuite.api.poc import register from pocsuite.api.poc import Output, POCBase import re class TestPOCPOCBase: vulID = '1' ssvid version = '1.0' author = 'kikay' vulDate = '2015-03-04'...

Nongyou农村三资综合信息管理系统 jbshouli.aspx 参数id SQL注入漏洞

No description provided by source...

农友政务系统 ftb.imagegallery.aspx组件 文件上传漏洞

No description provided by source...

Nongyou政务系统 cwgkview.aspx 参数 tname SQL注入漏洞

No description provided by source...

Nongyou政务系统/newsymItemView/DynamicItemView.aspx等2处 SQL注入漏洞

No description provided by source...

Nongyou政务系统 hnzc.aspx 参数CountryName SQL注入漏洞

0x01漏洞简介 Nongyou政务系统采用的ASPX+MYSQL架构，其在/hnzc.aspx处的参数CountryName注入漏洞，远程攻击者可以结合回显报错的方式执行SQL指令。 0x02漏洞详情 山东农友软件公司开发的农业监管系统存在一处SQL注入 我就只演示1个站了 ...:8200/hnzc.aspx?CountryName=%e6%96%87%e7%99%bb%e5%b8%82&level=1 0x03修复方案 过滤。...

Nongyou政务系统 VillagePersonaldzb.aspx 参数tname SQL注入漏洞

No description provided by source...

Nongyou政务系统 VillagePersonal2.aspx 参数tname和CountryName 2处SQL注入漏洞

No description provided by source...

Nongyou农业廉洁系统 ShowNews.aspx SQL注入漏洞

漏洞地址： ExtWebModels/WebFront/ShowNews.aspx GET参数 id 存在字符型 的 sql 注入 先看id参数： 直接报错。...

Nongyou政务系统 /symItemManage/ItemSecond.aspx等3处 SQL注入漏洞

No description provided by source...

Nongyou政务系统 /ckq/pllistOut.aspx等4处 参数CountryName SQL注入漏洞

0x01漏洞简介 Nongyou 政务系统采用的 ASPX+MYSQL 架构，其在以下4处的参数CountryName存在SQL注入漏洞： 1/newsymsum/VillagePersonalView.aspx 2/ckq/pllistOut.aspx 3/newsymItemView/DynamicItemViewOut.aspx 4/newsymsum/VillagePersonalView.aspx 0x02漏洞详情 第一处测试：...

Nongyou政务系统 LandInfoEdit.aspx 参数id SQL注入漏洞

No description provided by source...

Nongyou政务系统 Item2.aspx 参数id SQL注入漏洞

No description provided by source...

Nongyou政务系统 ItemSixth.aspx 参数id SQL注入漏洞

No description provided by source...

Nongyou政务系统 ShowLandInfo.aspx 参数id SQL注入漏洞

No description provided by source...

Nongyou 农业监管系统 WebDefault.aspx SQL注入漏洞

No description provided by source...

Nongyou政务系统erji.aspx 页面SQL注入漏洞

No description provided by source...

Shandong Nongyou Agricultural Integrity System SQL Injection Vulnerability

Shandong Nongyou Agricultural Integrity System is an agricultural management system. The Agricultural Integrity System suffers from SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information from the database...