Wedding Management System SQL Injection Vulnerability (CNVD-2022-54283)

Wedding Management System is a wedding planning management system by John Paul Lim Gabule, a personal developer. v1.0 of Wedding Management System is vulnerable to SQL injection, which originates from the lack of validation of external The vulnerability is caused by a lack of validation of extern...

Wedding Management System SQL Injection Vulnerability (CNVD-2022-54286)

Wedding Management System is a wedding planning management system by John Paul Lim Gabule, a personal developer. v1.0 of Wedding Management System is vulnerable to SQL injection, which originates from the admin/featureedit.php page that lacks An attacker can use this vulnerability to execute...

Exploit for Path Traversal in Wso2 Api_Manager

Better CVE-2022-29464 Certain WSO2 products allow unrestricte...

CSCMS Music Portal System SQL Injection Vulnerability (CNVD-2022-45898)

CSCMS Music Portal System is a diversified content management system from China Sunshine Network Technology CSCMS, Inc. A SQL injection vulnerability exists in CSCMS Music Portal System, which originates from the missing id parameter of /admin.php/news/admin/news/save validation of external input...

CSCMS Music Portal System SQL Injection Vulnerability (CNVD-2022-45897)

CSCMS Music Portal System is a diversified content management system from China Chongsheng Network Technology CSCMS, Inc. A SQL injection vulnerability exists in CSCMS Music Portal System, which originates from the missing id parameter in /admin.php/news/admin/lists/zhuan validation of external...

CSCMS Music Portal System SQL Injection Vulnerability (CNVD-2022-45902)

CSCMS Music Portal System is a diversified content management system from China Sunshine Network Technology CSCMS, Inc. A SQL injection vulnerability exists in CSCMS Music Portal System, which stems from the lack of validation of the id parameter of /admin.php/pic/admin/pic/hy against external...

CSCMS Music Portal System SQL Injection Vulnerability (CNVD-2022-45397)

CSCMS Music Portal System is a diversified content management system of China Chong Sheng Network Technology CSCMS Company. CSCMS Music Portal System suffers from a SQL injection vulnerability that originates from the lack of validation of the id parameter of /admin.php/pic/admin/type/plsave for...

CSCMS Music Portal System SQL Injection Vulnerability (CNVD-2022-45401)

CSCMS Music Portal System is a diversified content management system of China Chong Sheng Network Technology CSCMS Company. CSCMS Music Portal System suffers from a SQL injection vulnerability that originates from the lack of validation of the id parameter in /admin.php/singer/admin/singer/hy...

CSCMS Music Portal System SQL Injection Vulnerability (CNVD-2022-45400)

CSCMS Music Portal System is a diversified content management system of China Chong Sheng Network Technology CSCMS Company. CSCMS Music Portal System suffers from a SQL injection vulnerability that originates from the lack of validation of the id parameter in /admin.php/singer/admin/singer/del fo...

CSCMS Music Portal System SQL Injection Vulnerability (CNVD-2022-45402)

CSCMS Music Portal System is a diversified content management system of China Chong Sheng Network Technology CSCMS Company. CSCMS Music Portal System suffers from a SQL injection vulnerability that originates from the id parameter in /admin.php/user/leveldel that lacks validation of externally...

Covid-19 Travel Pass Management System SQL Injection Vulnerability (CNVD-2022-68948)

Covid-19 Travel Pass Management System is a Covid-19 travel pass management system. It provides an online platform for submitting travel passes within the Covid-19 restrictions. SQL injection vulnerability exists in the Covid-19 Travel Pass Management System v1.0 version, which originates from...

Home Clean Services Management System SQL Injection Vulnerability

Home Clean Services Management System is a home cleaning service system. version 1.0 of Home Clean Services Management System is vulnerable to SQL injection, which can be exploited by attackers to execute illegal SQL commands to steal sensitive database data...

School Dormitory Management System SQL Injection Vulnerability (CNVD-2022-66687)

School Dormitory Management System is a school dormitory management system. SQL injection vulnerability exists in School Dormitory Management System v1.0, which originates from /dms/admin/reports/dailycollection The report.php parameter lacks validation for external input SQL statements. An...

SPIP SQL Injection Vulnerability

SPIP is a web-based content publishing system. A SQL injection vulnerability exists in SPIP version 3.1.13 and earlier, which stems from a lack of validation of external input SQL statements in the liertrad and where parameters of /ecrire. An attacker could use this vulnerability to execute illeg...

Simple Client Management System SQL注入漏洞（CNVD-2022-57776）

Simple Client Management System is a simple client management system from Carlo Montero's personal developer. version 1.0 of Simple Client Management System is vulnerable to SQL injection, which originates from a vulnerability in /cms/classes/Master. php?f=deleteservice, the id parameter of the...

Simple Client Management System SQL注入漏洞（CNVD-2022-57771）

Simple Client Management System is a simple client management system from Carlo Montero's personal developer. version 1.0 of Simple Client Management System is vulnerable to a SQL injection vulnerability that originates in /cms/admin/?page=user/ The vulnerability is caused by the lack of validati...

Online Sports Complex Booking System SQL注入漏洞（CNVD-2022-58670）

Online Sports Complex Booking System is an online stadium booking system by Carlo Montero, a personal developer. page=user/manageuser&id= lacks validation of external input SQL statements, which can be exploited to execute illegal SQL commands to steal sensitive database data...

Online Sports Complex Booking System SQL注入漏洞（CNVD-2022-58676）

Online Sports Complex Booking System is an online stadium booking system by Carlo Montero, a personal developer. Online Sports Complex Booking System version 1.0 is vulnerable to a SQL injection vulnerability that originates in scbs/classes/ Master.php?f=deletefacility, the id parameter of the po...

Online Sports Complex Booking System SQL注入漏洞（CNVD-2022-58677）

Online Sports Complex Booking System is an online stadium booking system by Carlo Montero, a personal developer. version 1.0 of Online Sports Complex Booking System is vulnerable to SQL injection, which originates in scbs/classes/ Master.php?f=delete, the id parameter of the post request lacks...

jeecg-boot suffers from a SQL injection vulnerability (CNVD-2022-43846)

JeecgBoot is a low-code BPM-based platform. jeecg-boot suffers from a SQL injection vulnerability that can be exploited by an attacker to obtain sensitive information about a database...