630 matches found
WDJA SQL Injection Vulnerability
Wdja is a Php-based content management system from the WDJA team. v2.1 of WDJA is vulnerable to SQL injection, which stems from the impact of a SQL injection vulnerability in the front-end search function. An attacker can exploit the vulnerability for SQL injection...
CVE-2021-42185
wdja v2.1 is affected by a SQL injection vulnerability in the foreground search function...
CVE-2021-42185
wdja v2.1 is affected by a SQL injection vulnerability in the foreground search function...
Sql injection
wdja v2.1 is affected by a SQL injection vulnerability in the foreground search function...
CVE-2021-42185
CVE-2021-42185 affects the PHP-based CMS WDJA v2.1, with a SQL injection in the foreground search function. The issue is documented across multiple sources (NVD entry notes a SQLi vulnerability in the front-end search; Red Hat and CNVD entries corroborate WDJA v2.1 exposure). CVSS data in the NVD...
CVE-2021-42185
wdja v2.1 is affected by a SQL injection vulnerability in the foreground search function...
WordPress Stafflist 3.1.2 SQL Injection
Exploit Title: WordPress Plugin stafflist 3.1.2 - SQL Injection Authenticated Date: 05-02-2022 Exploit Author: Hassan Khan Yusufzai - Splint3r7 Vendor Homepage: https://wordpress.org/plugins/stafflist/ Version: 3.1.2 Tested on: Firefox Contact me: h at spidersilk.com Vulnerable Code: $w =...
Shopware B2B-Suite SQL Injection Vulnerability (CNVD-2022-82575)
Shopware is a suite of e-commerce software from the German company Shopware.Shopware B2B-Suite 4.4.1 and prior versions are vulnerable to SQL injection, which stems from the lack of validation of external input SQL statements applied to the sort-by parameter of the search function. An authenticat...
CVE-2020-20425
S-CMS Government Station Building System v5.0 contains a cross-site scripting XSS vulnerability in the search function...
Cross site scripting
S-CMS Government Station Building System v5.0 contains a cross-site scripting XSS vulnerability in the search function...
CVE-2020-20425
S-CMS Government Station Building System v5.0 (PHP/MySQL CMS) includes a cross-site scripting (XSS) vulnerability in the search function. The CVE description confirms XSS in this release; connected sources reiterate S-CMS v5.0 as affected and describe the vulnerability class. No root cause detail...
WordPress 插件跨站脚本漏洞
WordPress is a set of blogging platforms developed by the Wordpress Foundation using the PHP language.Lets-Box Plugin is a WordPress open source application plugin.Wordpress Lets-Box Plugin has a cross-site scripting vulnerability in versions prior to 1.15.3, which stems from the Lets-Box Plugin'...
CVE-2021-41728
Cross Site Scripting XSS vulnerability exists in Sourcecodester News247 CMS 1.0 via the search function in articles...
Cross site scripting
Cross Site Scripting XSS vulnerability exists in Sourcecodester News247 CMS 1.0 via the search function in articles...
CVE-2021-41728
CVE-2021-41728 describes a Cross-Site Scripting (XSS) vulnerability in Sourcecodester News247 CMS 1.0, exploitable via the search function in articles. All connected documents consistently identify the affected product as News247 CMS v1.0 and report user-side script execution risk, but do not pro...
CVE-2021-41728
Cross Site Scripting XSS vulnerability exists in Sourcecodester News247 CMS 1.0 via the search function in articles...
Stack overflow
Internet Download Manager 6.37.11.1 was discovered to contain a stack buffer overflow in the Search function. This vulnerability allows attackers to escalate local process privileges via unspecified vectors...
CVE-2020-28964
CVE-2020-28964 affects Internet Download Manager (IDM) 6.37.11.1, with a stack buffer overflow in the Search function. The root cause is an overflow in the search workflow that could enable local privilege escalation. The documents consistently describe the vulnerability as local and requiring no...
CVE-2020-28964
Internet Download Manager 6.37.11.1 was discovered to contain a stack buffer overflow in the Search function. This vulnerability allows attackers to escalate local process privileges via unspecified vectors...
Internet Download Manager 缓冲区错误漏洞
Tonec Fze Internet Download Manager Idm is a tool to increase download speeds by up to five times, resume and schedule downloads from Tonec Fze, Inc. A buffer error vulnerability exists in Internet Download Manager 6.37.11.1, which originates from a stack buffer overflow found in the search...