Online Fire Reporting System SQL Injection Vulnerability (CNVD-2022-55746)

Online Fire Reporting System is an online fire reporting system from Carlo Montero's personal developer. version v1.0 of Online Fire Reporting System is vulnerable to SQL injection, which originates from /ofrs/classes/Master.php?f= deleterequest lacks validation for external input SQL statements,...

ChatBot App with Suggestion SQL注入漏洞

ChatBot App with Suggestion is a ChatBot application with suggestion by Carlo Montero's personal developer. v1.0 of ChatBot App with Suggestion is vulnerable to SQL injection, which originates from /simplechatbot/ admin/?page=user/manageuser&id=The page lacks validation for external input SQL...

Rescue Dispatch Management System SQL注入漏洞（CNVD-2022-53910）

Rescue Dispatch Management System is a rescue dispatch management system from Carlo Montero's personal developer. rescue dispatch management system v1.0 is vulnerable to SQL injection, which originates from /rdms/admin/ respondenttypes/managerespondenttype.php?id=The page lacks validation for...

Rescue Dispatch Management System SQL注入漏洞（CNVD-2022-53917）

Rescue Dispatch Management System is a rescue dispatch management system from Carlo Montero's personal developer. v1.0 of Rescue Dispatch Management System is vulnerable to SQL injection, which originates from /rdms/admin/ incidentreports/viewreport.php?id=The page lacks validation for external...

Online Car Wash Booking System SQL注入漏洞（CNVD-2022-53345）

Online Car Wash Booking System is an online car wash booking system from Carlo Montero's personal developer. version v1.0 of Online Car Wash Booking System is vulnerable to SQL injection, which originates from /ocwbs/admin/?page=bookings /viewdetails&id=page lacks validation of external input SQL...

Online Car Wash Booking System SQL注入漏洞（CNVD-2022-53347）

Online Car Wash Booking System is an online car wash booking system by Carlo Montero, a personal developer. Online Car Wash Booking System v1.0 is vulnerable to SQL injection, which originates from /ocwbs/admin/services/ manageprice.php?id=The page lacks validation for external input SQL...

Badminton Center Management System SQL注入漏洞（CNVD-2022-44727）

Badminton Center Management System is a badminton center management system from Carlo Montero's personal developer. It provides an online and automated platform for badminton centers to manage their daily transactions and records.Badminton Center Management System version v1.0 is vulnerable to SQ...

Badminton Center Management System SQL注入漏洞（CNVD-2022-44732）

Badminton Center Management System is a badminton center management system from Carlo Montero's personal developer. It provides an online and automated platform for badminton centers to manage their daily transactions and records. Badminton Center Management System version v1.0 is vulnerable to S...

Badminton Center Management System SQL注入漏洞（CNVD-2022-44735）

Badminton Center Management System is a badminton center management system from Carlo Montero's personal developer. It provides an online and automated platform for badminton centers to manage their daily transactions and records. version v1.0 of Badminton Center Management System is vulnerable t...

ACEware Systems ACEweb Online Portal SQL Injection Vulnerability

ACEware Systems ACEweb Online Portal is a component of the Student Manager solution from ACEware Systems, Inc. A SQL injection vulnerability exists in ACEware Systems ACEweb Online Portal version 3.5.065, which stems from The conditional parameter in showchedule.awp lacks validation for external...

Online Fire Reporting System SQL Injection Vulnerability (CNVD-2022-55745)

Online Fire Reporting System is an online fire reporting system from Carlo Montero's personal developer. version v1.0 of Online Fire Reporting System is vulnerable to SQL injection, which originates from /ofrs/classes/Master.php?f= deleteinquiry lacks validation for external input SQL statements,...

Wedding Management System SQL Injection Vulnerability (CNVD-2022-54290)

Wedding Management System is a wedding planning management system by John Paul Lim Gabule, a personal developer. v1.0 of Wedding Management System is vulnerable to SQL injection, which originates from the admin/photosedit.php page's lack of validation of external An attacker can use this...

Elitecms SQL Injection Vulnerability (CNVD-2022-57760)

Elitecms is a Web content management from elitecms India. elitecms version 1.01 has a SQL injection vulnerability that originates from the /admin/addsidebar.php page's lack of validation of external input SQL statements, which can be exploited by attackers to execute illegal SQL commands to steal...

Wedding Management System SQL Injection Vulnerability (CNVD-2022-54281)

Wedding Management System is a wedding planning management system by John Paul Lim Gabule, a personal developer. v1.0 of Wedding Management System is vulnerable to SQL injection, which originates from the admin/clientassign.php page that lacks An attacker can use this vulnerability to execute...

Elitecms SQL Injection Vulnerability (CNVD-2022-57759)

Elitecms is a Web content management from elitecms India. elitecms version 1.01 has a SQL injection vulnerability that originates from the lack of validation of external input SQL statements on the /admin/addpost.php page, which can be exploited by attackers to execute illegal SQL commands to ste...

Wedding Management System SQL Injection Vulnerability (CNVD-2022-54296)

Wedding Management System is a wedding planning management system by John Paul Lim Gabule. v1.0 of Wedding Management System is vulnerable to SQL injection, which originates from Wedding-Management/wedding details.php page. details.php page lacks validation of externally entered SQL statements,...

Ecommerce-project-with-php-and-mysqli-Fruits-Bazar SQL Injection Vulnerability

Ecommerce-project-with-php-and-mysqli-Fruits-Bazar an e-commerce project. ecommerce-project-with-php-and-mysqli-Fruits-Bazar version 1.0 is vulnerable to SQL injection, which stems from The keyword parameter of the searchproduct.php page lacks validation for external input SQL statements. An...

Online Ordering System SQL Injection Vulnerability (CNVD-2022-55718)

Online Ordering System is a multi-store ordering system that can be used by any small business. SQL statement validation, which can be exploited to execute illegal SQL commands to steal sensitive database data...

Online Ordering System SQL Injection Vulnerability (CNVD-2022-55723)

Online Ordering System is a multi-store ordering system that can be used by any small business.An SQL injection vulnerability exists in Online Ordering System version 2.3.2, which originates from /ordering/admin/stockin/index.php?view=edit&id= The page lacks validation of externally entered SQL...

Wedding Management System SQL Injection Vulnerability (CNVD-2022-54292)

Wedding Management System is a wedding planning management system by John Paul Lim Gabule, a personal developer. v1.0 of Wedding Management System is vulnerable to SQL injection, which originates from Wedding-Management/admin/ select.php page lacks validation of externally entered SQL statements,...