Web Ofisi Firma Rehberi SQL注入漏洞

Web Ofisi Firma Rehberi is a directory system of companies operated by the Turkish company Web Ofisi. Version 1 of Web Ofisi Firma Rehberi has a SQL injection vulnerability, which stems from insufficient validation of GET parameter inputs. This vulnerability may lead to SQL injection attacks...

PrestaShop 跨站脚本漏洞

PrestaShop is an open source e-commerce solution from the US company PrestaShop. The program provides multiple payment methods, SMS alerts and product image zoom and other features. A cross-site scripting vulnerability exists in PrestaShop version 8.1.7, which stems from missing validation of lin...

ASUS Control Center SQL注入漏洞

ASUS Control Center is a new centralized IT management software from ASUS China. The software can monitor and control ASUS servers, workstations. A SQL injection vulnerability exists in ASUS Control Center v1.4.2.5. An attacker can exploit this vulnerability to inject SQL commands into specific A...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Bugzero 4.3.1 and other versions allow remote attackers to inject arbitrary web script or HTML via the 1 msg parameter in query.jsp and 2 entryId parameter in edit.jsp...