PHP Event Calendar Lite Edition is vulnerable to SQL injection

PHP Event Calendar is an open source AJAX-based multi-user modern event calendar. It is easy to integrate and fully customizable.PHP Event Calendar Lite Edition is vulnerable to SQL injection, which can be exploited by attackers to execute illegal SQL commands to obtain sensitive database data...

YouPHPTube catName parameter SQL injection vulnerability

YouPHPTube is a PHP-based video website system. youPHPTube is vulnerable to SQL injection in version 10.0 and earlier, which stems from the lack of validation of external input SQL statements for the catName parameter. An attacker could use this vulnerability to execute illegal SQL commands to...

WordPress Mangboard plugin SQL injection vulnerability

WordPress is the Wordpress Foundation's set of blogging platforms developed using the PHP language. WordPress Mangboard plugin has a SQL injection vulnerability, which originates from the lack of validation of external input SQL statements in order parameters, and can be used by attackers to...

FUEL CMS SQL Injection Vulnerability (CNVD-2021-74294)

FUEL CMS is a content management system CMS based on the Codelgniter framework. FUEL CMS in version 1.5.0 suffers from a SQL injection vulnerability, which originates from the lack of validation of the parameter col in the software's /FUEL/index.php/FUEL/logs/items for externally-inputted SQL...

Simple Water Refilling Station Management System SQL注入漏洞

Simple Water Refilling Station Management System is a simple water refilling station management system . A SQL injection vulnerability exists in the v1.0 version of Simple Water Refilling Station Management System, which originates from the application WaterRefilling/classes/Login.php, the userna...

SQL Injection Vulnerability in Ke361 Backend Ca***.cl***.php

Ke361 is an open source Taobao system, based on the latest ThinkPHP3.2 version of the development, to provide a more convenient and secure WEB application development experience, the Taobao system adopts a new architectural design and namespace mechanism, the integration of modular, driven and...

SQL Injection Vulnerability in Ke361 Backend Di***.cl***.php

Ke361 is an open source Taobao system, based on the latest ThinkPHP3.2 version of the development, to provide a more convenient and secure WEB application development experience, the Taobao system adopts a new architectural design and namespace mechanism, the integration of modular, driven and...

SQL injection vulnerability exists in ke361 (CNVD-2021-24528)

Ke361 is an open source Taobao system. ke361 suffers from an SQL injection vulnerability that can be exploited by attackers to obtain sensitive database data...

Ke361 suffers from SQL injection vulnerability (CNVD-2021-24524)

Ke361 is an open source Taobao system. Ke361 has a SQL injection vulnerability that can be exploited by attackers to obtain sensitive database data...

SQL Injection Vulnerability in Ke361 Frontend Go*** Functions

Ke361 is an open source Taobao system. Ke361 front-end Go function has a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database data...

SQL Injection Vulnerability in the Comprehensive Management Platform of Beijing Zhongcheng Kexin Technology Development Co. Ltd (CNVD-2020-70798)

Beijing Zhongcheng Kexin Technology Development Co., Ltd. is a travel whole industry chain service provider. A SQL injection vulnerability exists in the integrated management platform of Beijing Zhongcheng Kexin Technology Development Co. An attacker can exploit this vulnerability to obtain...

SQL Injection Vulnerability in Intelligent Internet of Things System of Nanjing Jiuzhe Software Technology Co.

Nanjing Jiuzhe Software Technology Co., Ltd. business scope includes: software development, technical services, technical consulting services, technology transfer and so on. Nanjing Jiuzhe Software Technology Co., Ltd. intelligent Internet of things system SQL injection vulnerability, attackers c...

SQL Injection Vulnerability in the Customer Platform of Shanxi Shanda Xinwang Technology Co.

Shanxi Shanda New Network Technology Co., Ltd. is a high-tech company specializing in the development of industry application software products, software services, the company has long been committed to providing enterprise management software with independent intellectual property rights,...

Victor CMS suffers from SQL injection vulnerability

Victor CMS is a simple content management system. Victor CMS suffers from a SQL injection vulnerability. An attacker can exploit the vulnerability to obtain sensitive database information...

SQL Injection Vulnerability in Embedded High Definition Recording and Playback System of Guangzhou Haisheng Computer Technology Co.

Embedded high-definition recording and broadcasting system adopts high-performance SOC processor, which can realize 1080P encoding display up to 60 frames per second, support POC power supply function, a standard SDI cable can realize video transmission, power supply and PTZ control and other...

SQL injection vulnerability in ad***.cl***.php file in the backend of MTCEO repository system

MTCEO library system using php + mysql, built by thinkphp underlying , Baidu library template style for the basic style . MTCEO library system background ad.cl.php file SQL injection vulnerability. Attackers can use the vulnerability to obtain database sensitive information...

SQL Injection Vulnerability in Shield Spirit Voting Sucking System

Shield Spirit Voting Powder Sucking System can be applied to the public number, through the WeChat public number of the message interface to collect the user to send the vote number of the data to reach the vote, with anti-brush voting voting function, but also efficiently suck the live powder...

SQL Injection Vulnerability in the Management Platform of Internet Service Establishments of the Public Security Bureau (CNVD-2020-60077)

Harbin Zhonglong Baiying Technology Development Co., Ltd. was established on May 29, 2013, mainly engaged in computer hardware and software, office automation equipment, security equipment and so on. A SQL injection vulnerability exists in the management platform of the Public Security Bureau's...

Jinan Yuxia Information Technology Co., Ltd. website building system SQL injection vulnerability

Jinan Yuxia Information Technology Co., Ltd. to the Internet products and related services as the main direction, is a collection of website construction and network promotion, IDC business, software development, server hosting, telecommunications value-added services and other integrated service...

YouDianCMS suffers from SQL injection vulnerability (CNVD-2020-56374)

YouDianCMS set computer website, mobile website, micro letter, APP, small program in one, share space, data automatic synchronization, is the domestic open source five station one excellent solution. YouDianCMS has SQL injection vulnerability, attackers can use the vulnerability to obtain databas...