132 matches found
CVE-2021-1235
A vulnerability in the CLI of Cisco SD-WAN vManage Software could allow an authenticated, local attacker to read sensitive database files on an affected system. The vulnerability is due to insufficient user authorization. An attacker could exploit this vulnerability by accessing the vshell of an...
Cisco SD-WAN vManage Software 安全漏洞
Cisco SD-WAN Solution is a suite of network extension solutions from Cisco, of which vManage is the console. An information disclosure vulnerability exists in the CLI of Cisco SD-WAN vManage versions prior to 19.2.3, which can be exploited by an attacker to read database files from the underlying...
CVE-2020-27285
The default configuration of Crimson 3.1 Build versions prior to 3119.001 allows a user to be able to read and modify the database without authentication...
SQL Injection Vulnerability in Face Recognition Management System of Hanvon Technology Co.
The team is committed to the research and development of face recognition application management system, using face recognition technology as the entry point, combined with Internet technology, cloud computing, big data analysis, cloud storage and other technologies, to develop a series of...
CVE-2020-3468
A vulnerability in the web-based management interface of Cisco SD-WAN vManage Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. The vulnerability exists because the web-based management interface improperly validates values within SQL...
CVE-2020-10874
Motorola FX9500 devices allow remote attackers to read database files...
Postfix Berkeley DB Read Database Vulnerability
Postfix is a mail transfer agent used in Unix-like operating systems.Berkeley DB is a file database software. A security vulnerability exists in Berkeley DB 2.x and later versions in Postfix. A local attacker can exploit this vulnerability to gain privileges...
Cory Support SQL Injection
Exploit : Cory Support pr SQL Injection Vulnerability Author : v3n0m Contact : v3n0matoutlookdotcom Date : September, 06-2017 GMT +7:00 Jakarta, Indonesia Developer : Cory App Software : Cory Support App Link : http://coryapp.com/?product&index Demo : http://coryapp.com/demo/support/ Tested On :...
B2B Script 4.27 - SQL Injection
B2B Script 4.27 - SQL Injection Vulnerability: B2B Script v4.27 - SQL Injection Date: 18.01.2017 Software link: http://itechscripts.com/b2b-script/ Demo: http://b2b.itechscripts.com Price: 199$ Category: webapps Exploit Author: Dawid Morawski Website: http://www.morawskiweb.pl Contact:...
PHPCMS V9 Trojan Bypass Configuration Vulnerability
PHPCMS is a web content management system based on PHP and Mysql architecture. The system includes modules such as news, pictures, downloads, information and products. PHPCMS V9 Trojan horse checking at the existence of bypass configuration vulnerability, allowing attackers to exploit the...
CVE-2014-9249
The default configuration of Zenoss Core before 5 allows remote attackers to read or modify database information by connecting to unspecified open ports, aka ZEN-15408...
MySQL Connector/J vulnerable to SQL injection
Overview MySQL Connector/J from Sun Microsystems contains a SQL injection vulnerability. MySQL Connector/J from Sun Microsystems is a software that provides access to a MySQL database for client applications written in Java. MySQL Connector/J contains a SQL injection vulnerability. Masakazu Ikeda...