110 matches found
SQL injection vulnerability in UQCMS aj***.php page
UQCMS cloud business system is a B2B2C e-commerce software with the program using PHP+MYSQL and the template using smarty template. A SQL injection vulnerability exists in the UQCMS aj.php page, which can be exploited by attackers to obtain sensitive information from the database...
File inclusion vulnerability in Ocean CMS co***.php page
Ocean CMS is a web content management system based on PHP+MYSQL architecture that can run across platforms. A file inclusion vulnerability exists in the Ocean CMS co.php page, which can be exploited by attackers to execute malicious code...
Arbitrary file deletion vulnerability in Bacardi CMS pi***.php page
Bacardi CMS micro-mall is a free and open source object-oriented multi-store multi-user micro-mall PHP development framework , created in June 2014 , follow the Apache Licence2 open source agreement released , is to quickly simplify the development of enterprise micro-mall applications , to help...
SQL Injection Vulnerability in ESPCMS Ar***.php Page
ESPCMS is a content management system CMS based on PHP and MySQL. A SQL injection vulnerability exists in the ESPCMS Ar.php page, which can be exploited by attackers to obtain sensitive information from the database...
SQL injection vulnerability in the F***_cq*** parameter of the aj***.php page in the background of S-CMS government website builder system
S-CMS is a content management system CMS based on PHP and MySQL. There is a SQL injection vulnerability in the Fcq parameter on the aj.php page in the background of the S-CMS Government Building System, which can be exploited by an attacker to obtain sensitive information from the database...
SQL injection vulnerability in zzzzphp backend sa***.php page
zzphp is a free website builder developed in PHP language. There is a SQL injection vulnerability in the sa.php page of zzzphp background, which can be exploited by attackers to obtain sensitive database information...
SQL injection vulnerability in in***.php page of Hefei Seven Gang Network Technology Co.
Ltd. is mainly engaged in website construction product development and services. The in.php page of the Hefei Seven Help Network Technology Co., Ltd. website building system has a SQL injection vulnerability. Attackers can use the vulnerability to obtain sensitive information in the database...
SQL Injection Vulnerability in Qiji Fortress se***.php Page
Zhejiang Qiji Technology Co., Ltd. is a company mainly engaged in computer hardware and software, network products, technology development and other projects. There is a SQL injection vulnerability in the se.php page of Qiji Fortress, which can be exploited by attackers to obtain sensitive...
SQL injection vulnerability in Five Fingers CMS in***.php page
Five Fingers CMS is a high-performance open source content management system that supports LNAMP architecture. Five Fingers CMS in.php page SQL injection vulnerability, an attacker can use the vulnerability to obtain database sensitive information...
Command Execution Vulnerability in Ziggy Fortress pr***_cr***.php Page
Zhejiang Qiji Technology Co., Ltd. is a company mainly engaged in computer hardware and software, network products, technology development and other projects. A command execution vulnerability exists in the prcr.php page of Qiji Fortress, which can be exploited by an attacker to gain server...
Bo-blog Wind CMS ad***.mo***.php page suffers from SQL injection vulnerability
Bo-blog Wind BW for short is a lightweight personal blogging program. A SQL injection vulnerability exists in the Bo-blog Wind CMS ad.mo.php page. An attacker can exploit the vulnerability to obtain sensitive database information...
SQL Injection Vulnerability in Tpshop v3.5 Ar***.php Page
Tpshop is a set of multi-merchant mode developed by Shenzhen Soleil Networks Limited mall system. A SQL injection vulnerability exists in the Tpshop v3.5 Ar.php page. An attacker can exploit the vulnerability to obtain sensitive information from the database...
SQL Injection Vulnerability in Tpshop v3.5 In***.php Page
Tpshop is a set of multi-merchant mode developed by Shenzhen Soleil Networks Limited mall system. A SQL injection vulnerability exists in the Tpshop v3.5 In.php page. Attackers can use the vulnerability to obtain sensitive information in the database...
SQL Injection Vulnerability in Tpshop v3.5 Or***.php Page
Tpshop is a set of multi-merchant mode developed by Shenzhen Soleil Networks Limited mall system. A SQL injection vulnerability exists in the Tpshop v3.5 Or.php page. An attacker can exploit the vulnerability to obtain sensitive information from the database...
SQL injection vulnerability in pr***.php page of Jinan Yuxia Information Technology Co.
Jinan Yuxia Information Technology Co., Ltd. to the Internet products and related services as the main direction, is a collection of website construction and network promotion, IDC business, software development, server hosting, telecommunications value-added services and other integrated service...
SQL injection vulnerability in in***.php page of website building system of Unicom (Dalian) Technology Co.
Ltd. started from website production and SEO outsourcing technology, and has now developed into an Internet-wide integrated marketing expert, specializing in the field of mobile Internet development and technology applications. Ltd. website building system in.php page SQL injection vulnerability...
ESPCMS P8 Me***.php page has xss vulnerability
ESPCMS is an enterprise website management system built on LAMP development. An xss vulnerability exists in the ESPCMS P8 Me.php page. Attackers can use the vulnerability to obtain cookie access when logging into the background as an administrator...
SQL injection vulnerability in iCMS sp***.ad***.php page
iCMS is a free and simple PHP content management system. A SQL injection vulnerability exists in the iCMS sp.ad.php page. An attacker can exploit this vulnerability to obtain sensitive database information...
Arbitrary file download vulnerability in s-cms news portal system do***.php page
An arbitrary file download vulnerability exists in the do.php page of the s-cms news portal system, which allows an attacker to forge cookies to bypass authentication and download files at will...
CVE-2019-7546
An issue was discovered in SIDU 6.0. The dbs parameter of the conn.php page has a reflected Cross-site Scripting XSS vulnerability...