Lucene search
K

292 matches found

CNVD
CNVD
added 2022/06/09 12:0 a.m.22 views

ChatBot App with Suggestion SQL注入漏洞

ChatBot App with Suggestion is a ChatBot application with suggestion by Carlo Montero's personal developer. v1.0 of ChatBot App with Suggestion is vulnerable to SQL injection, which originates from /simplechatbot/ admin/?page=user/manageuser&id=The page lacks validation for external input SQL...

9.8CVSS5.3AI score0.01081EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/09 12:0 a.m.28 views

Rescue Dispatch Management System SQL注入漏洞(CNVD-2022-53917)

Rescue Dispatch Management System is a rescue dispatch management system from Carlo Montero's personal developer. v1.0 of Rescue Dispatch Management System is vulnerable to SQL injection, which originates from /rdms/admin/ incidentreports/viewreport.php?id=The page lacks validation for external...

9.8CVSS2.8AI score0.01081EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/09 12:0 a.m.23 views

Online Fire Reporting System SQL Injection Vulnerability (CNVD-2022-55746)

Online Fire Reporting System is an online fire reporting system from Carlo Montero's personal developer. version v1.0 of Online Fire Reporting System is vulnerable to SQL injection, which originates from /ofrs/classes/Master.php?f= deleterequest lacks validation for external input SQL statements,...

9.8CVSS4.8AI score0.0716EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/09 12:0 a.m.23 views

Wedding Management System SQL Injection Vulnerability (CNVD-2022-54281)

Wedding Management System is a wedding planning management system by John Paul Lim Gabule, a personal developer. v1.0 of Wedding Management System is vulnerable to SQL injection, which originates from the admin/clientassign.php page that lacks An attacker can use this vulnerability to execute...

7.2CVSS3.3AI score0.00958EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/09 12:0 a.m.10 views

Badminton Center Management System SQL注入漏洞(CNVD-2022-44732)

Badminton Center Management System is a badminton center management system from Carlo Montero's personal developer. It provides an online and automated platform for badminton centers to manage their daily transactions and records. Badminton Center Management System version v1.0 is vulnerable to S...

7.2CVSS3.9AI score0.00795EPSS
Exploits0References1
CNVD
CNVD
added 2022/06/09 12:0 a.m.21 views

Online Car Wash Booking System SQL注入漏洞(CNVD-2022-53345)

Online Car Wash Booking System is an online car wash booking system from Carlo Montero's personal developer. version v1.0 of Online Car Wash Booking System is vulnerable to SQL injection, which originates from /ocwbs/admin/?page=bookings /viewdetails&id=page lacks validation of external input SQL...

9.8CVSS4.7AI score0.01067EPSS
Exploits1References1
CNVD
CNVD
added 2022/06/09 12:0 a.m.22 views

Wedding Management System SQL Injection Vulnerability (CNVD-2022-54296)

Wedding Management System is a wedding planning management system by John Paul Lim Gabule. v1.0 of Wedding Management System is vulnerable to SQL injection, which originates from Wedding-Management/wedding details.php page. details.php page lacks validation of externally entered SQL statements,...

7.2CVSS2.9AI score0.00958EPSS
Exploits1References1
CNVD
CNVD
added 2022/05/31 12:0 a.m.11 views

CSCMS Music Portal System SQL Injection Vulnerability (CNVD-2022-45898)

CSCMS Music Portal System is a diversified content management system from China Sunshine Network Technology CSCMS, Inc. A SQL injection vulnerability exists in CSCMS Music Portal System, which originates from the missing id parameter of /admin.php/news/admin/news/save validation of external input...

7.2CVSS3AI score0.00793EPSS
Exploits1References1
CNVD
CNVD
added 2022/05/31 12:0 a.m.8 views

CSCMS Music Portal System SQL Injection Vulnerability (CNVD-2022-45897)

CSCMS Music Portal System is a diversified content management system from China Chongsheng Network Technology CSCMS, Inc. A SQL injection vulnerability exists in CSCMS Music Portal System, which originates from the missing id parameter in /admin.php/news/admin/lists/zhuan validation of external...

8.8CVSS2.9AI score0.00908EPSS
Exploits1References1
CNVD
CNVD
added 2022/05/31 12:0 a.m.9 views

CSCMS Music Portal System SQL Injection Vulnerability (CNVD-2022-45902)

CSCMS Music Portal System is a diversified content management system from China Sunshine Network Technology CSCMS, Inc. A SQL injection vulnerability exists in CSCMS Music Portal System, which stems from the lack of validation of the id parameter of /admin.php/pic/admin/pic/hy against external...

8.8CVSS2.8AI score0.00908EPSS
Exploits1References1
CNVD
CNVD
added 2022/05/31 12:0 a.m.7 views

CSCMS Music Portal System SQL Injection Vulnerability (CNVD-2022-45401)

CSCMS Music Portal System is a diversified content management system of China Chong Sheng Network Technology CSCMS Company. CSCMS Music Portal System suffers from a SQL injection vulnerability that originates from the lack of validation of the id parameter in /admin.php/singer/admin/singer/hy...

7.2CVSS8.1AI score0.00896EPSS
Exploits1References1
CNVD
CNVD
added 2022/05/31 12:0 a.m.11 views

CSCMS Music Portal System SQL Injection Vulnerability (CNVD-2022-45400)

CSCMS Music Portal System is a diversified content management system of China Chong Sheng Network Technology CSCMS Company. CSCMS Music Portal System suffers from a SQL injection vulnerability that originates from the lack of validation of the id parameter in /admin.php/singer/admin/singer/del fo...

7.2CVSS8.2AI score0.00896EPSS
Exploits1References1
CNVD
CNVD
added 2022/05/31 12:0 a.m.14 views

CSCMS Music Portal System SQL Injection Vulnerability (CNVD-2022-45402)

CSCMS Music Portal System is a diversified content management system of China Chong Sheng Network Technology CSCMS Company. CSCMS Music Portal System suffers from a SQL injection vulnerability that originates from the id parameter in /admin.php/user/leveldel that lacks validation of externally...

7.2CVSS8.1AI score0.00896EPSS
Exploits1References1
CNVD
CNVD
added 2022/05/31 12:0 a.m.7 views

CSCMS Music Portal System SQL Injection Vulnerability (CNVD-2022-45397)

CSCMS Music Portal System is a diversified content management system of China Chong Sheng Network Technology CSCMS Company. CSCMS Music Portal System suffers from a SQL injection vulnerability that originates from the lack of validation of the id parameter of /admin.php/pic/admin/type/plsave for...

8.8CVSS8.2AI score0.00908EPSS
Exploits1References1
CNVD
CNVD
added 2022/05/26 12:0 a.m.16 views

Home Clean Services Management System SQL Injection Vulnerability

Home Clean Services Management System is a home cleaning service system. version 1.0 of Home Clean Services Management System is vulnerable to SQL injection, which can be exploited by attackers to execute illegal SQL commands to steal sensitive database data...

6.5CVSS5.6AI score0.00909EPSS
Exploits1Affected Software1
CNVD
CNVD
added 2022/05/26 12:0 a.m.18 views

Covid-19 Travel Pass Management System SQL Injection Vulnerability (CNVD-2022-68948)

Covid-19 Travel Pass Management System is a Covid-19 travel pass management system. It provides an online platform for submitting travel passes within the Covid-19 restrictions. SQL injection vulnerability exists in the Covid-19 Travel Pass Management System v1.0 version, which originates from...

9.8CVSS2.8AI score0.01026EPSS
Exploits1References1
CNVD
CNVD
added 2022/05/24 12:0 a.m.22 views

School Dormitory Management System SQL Injection Vulnerability (CNVD-2022-66687)

School Dormitory Management System is a school dormitory management system. SQL injection vulnerability exists in School Dormitory Management System v1.0, which originates from /dms/admin/reports/dailycollection The report.php parameter lacks validation for external input SQL statements. An...

7.5CVSS2.9AI score0.01976EPSS
Exploits1Affected Software1
CNVD
CNVD
added 2022/05/23 12:0 a.m.27 views

SPIP SQL Injection Vulnerability

SPIP is a web-based content publishing system. A SQL injection vulnerability exists in SPIP version 3.1.13 and earlier, which stems from a lack of validation of external input SQL statements in the liertrad and where parameters of /ecrire. An attacker could use this vulnerability to execute illeg...

6.5CVSS5.1AI score0.01515EPSS
Exploits1Affected Software1
CNVD
CNVD
added 2022/05/16 12:0 a.m.21 views

Simple Client Management System SQL注入漏洞(CNVD-2022-57771)

Simple Client Management System is a simple client management system from Carlo Montero's personal developer. version 1.0 of Simple Client Management System is vulnerable to a SQL injection vulnerability that originates in /cms/admin/?page=user/ The vulnerability is caused by the lack of validati...

9.8CVSS5AI score0.01568EPSS
Exploits1References1
CNVD
CNVD
added 2022/05/16 12:0 a.m.27 views

Online Sports Complex Booking System SQL注入漏洞(CNVD-2022-58670)

Online Sports Complex Booking System is an online stadium booking system by Carlo Montero, a personal developer. page=user/manageuser&id= lacks validation of external input SQL statements, which can be exploited to execute illegal SQL commands to steal sensitive database data...

9.8CVSS5.2AI score0.01068EPSS
Exploits1References1
Rows per page
Query Builder