266 matches found
Sql injection
FS Olx Clone 1.0 has SQL Injection via the subpage.php scat parameter or the message.php pid parameter...
Sql injection
Realestate Crowdfunding Script 2.7.2 has SQL Injection via the single-cause.php pid parameter...
CVE-2017-17586
FS Olx Clone 1.0 is affected by a SQL Injection vulnerability exposed via the scat parameter in subpage.php or the pid parameter in message.php. The issue is caused by improper handling of user-supplied input in these parameters, enabling remote attackers to inject SQL commands. Public references...
XYCMS column management module pid parameters have sql injection vulnerability
XYCMS, formerly known as Nanjing XYCMS Enterprise Station Building System, is a station building platform that provides one-stop web solutions for Chinese enterprises. XYCMS PHP version 1.4 version of the column management module there is a sql injection vulnerability, due to the pid parameter...
Joomla! Abstract component SQL injection vulnerability
Joomla! is an open source content management system CMS, the system provides RSS feeds, site search and other functions. A SQL injection vulnerability exists in version 2.1 of the Joomla! Abstract component, which is caused by a failure to properly validate the pid parameter on the 'index.php'...
Joomla com_blog component 'Pid' parameter SQL injection vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the 'Pid' parameter of the Joomla comblog component. An attacker can exploit the vulnerability to access or modify database data...
Joomla com_wisroyq component 'Pid' parameter SQL injection vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the 'Pid' parameter of the Joomla comwisroyq component. An attacker can exploit the vulnerability to access or modify database data...
Joomla com_redshop component 'Pid' parameter SQL injection vulnerability
Joomla is an open source content management system CMS. A SQL injection vulnerability exists in the 'Pid' parameter of the Joomla comredshop component. An attacker can exploit the vulnerability to access or modify database data...
Joomla com_dcrc component 'pid' parameter SQL injection vulnerability
Joomla is an open source content management system CMS. SQL injection vulnerability in the 'pid' parameter of the Joomla comdcrc component. An attacker can exploit the vulnerability to access or modify database data...
English Fu the education system /VJ/PublicModule/MessageManage/Iframe_StuSend. aspx file pid parameter SQL injection vulnerability
No description provided by source...
Generalized SQL Injection Vulnerability in VNet Series WEB Management System of Guangzhou Zhonghaida Satellite Navigation Technology Co.
COSHIDA VNet6 Professional Reference Station Receiver is one of COSHIDA's new VNet series of measurement systems, and it is also a professional reference station receiver specially designed for reference station applications. A generic SQL injection vulnerability exists in the pid parameter of th...
Sql injection
SQL injection vulnerability in ApPHP Hotel Site 3.x.x allows remote editors to execute arbitrary SQL commands via the pid parameter to index.php...
CVE-2015-4713
Affected software: ApPHP Hotel Site 3.x.x. Vulnerability: SQL injection via the pid parameter to index.php, enabling arbitrary SQL commands to be executed by remote attackers. Root cause (as stated): Insufficient input filtering/validation of the pid parameter, permitting crafted input to alter S...
CVE-2015-4713
SQL injection vulnerability in ApPHP Hotel Site 3.x.x allows remote editors to execute arbitrary SQL commands via the pid parameter to index.php...
Infinite Automation Systems Mango Automation Cross-Site Scripting Vulnerability
Infinite Automation Systems Mango Automation is an open source SCADA/HMI software application from Infinite Automation Systems in Australia that provides real-time logging of data from sensors, PLCs, databases, generates logs and reports, sends alarms and other functions. A cross-site scripting...
CVE-2013-3050
SQL injection vulnerability in ZAPms 1.41 and earlier allows remote attackers to execute arbitrary SQL commands via the pid parameter to product...
CVE-2012-5334
SQL injection vulnerability in productdesc.php in Pre Printing Press allows remote attackers to execute arbitrary SQL commands via the pid parameter...
CVE-2012-5334
SQL injection vulnerability in productdesc.php in Pre Printing Press allows remote attackers to execute arbitrary SQL commands via the pid parameter...
Sql injection
SQL injection vulnerability in author/edit.php in OpenConf 4.x before 4.12 allows remote attackers to execute arbitrary SQL commands via the pid parameter...
CVE-2010-5009
SQL injection vulnerability in index.php in UTStats Beta 4 and earlier allows remote attackers to execute arbitrary SQL commands via the pid parameter in a matchp action...