SQL Injection Vulnerability in Website Building System of Suzhou Leyi Network Technology Co.

Suzhou Leyi Network Technology Co., Ltd. is a network company specializing in enterprise website construction and e-commerce services, providing network promotion and marketing in one of the professional services. Suzhou Leyi Network Technology Co., Ltd. website building system SQL injection...

SQL injection vulnerability in newsbig.asp page of website construction system of Yongkang Trans Ocean Network Co.

Yongkang Trans Ocean Network Co., Ltd. is a company engaged in website construction, SEO website optimization search engine optimization, SEM integrated website marketing. Ltd. website construction system newsbig.asp page SQL injection vulnerability, attackers can use the vulnerability to obtain...

Jining Yifeng Network Technology Co., Ltd. website construction system has SQL injection vulnerabilities

Jining Yifeng Network Technology Co., Ltd. is a service-oriented enterprise focusing on website construction, website promotion, domain name registration, whole site optimization marketing system, 400 national toll-free telephone account and website moderator high-tech industry. Jining Yifeng...

Design/Logic Flaw

The Files APP 7.1.1.309 and earlier versions in some Huawei mobile phones has a brute-force password cracking vulnerability due to the improper design of the Safe key database. An unauthorized attacker could access sensitive database information and may crack users' Safe passwords, leading to...

CVE-2017-2715

The Files APP 7.1.1.309 and earlier versions in some Huawei mobile phones has a brute-force password cracking vulnerability due to the improper design of the Safe key database. An unauthorized attacker could access sensitive database information and may crack users' Safe passwords, leading to...

SQL Injection Vulnerability in OneSevenEight Advertising Media Website Construction System

178 Advertising Media is a company dedicated to providing digital marketing and new media planning, promotion and operation services for Chinese enterprises. A SQL injection vulnerability exists in the website construction system of 178 Advertising Media, which can be exploited by attackers to...

SQL Injection Vulnerability in phpaacms page.php File

phpaaCMS is a simple article management system. A SQL injection vulnerability exists in the phpaacms page.php file. An attacker can exploit this vulnerability to obtain sensitive database information...

ThinkPHP 5.0.10 framework filterExp function has SQL injection vulnerability

ThinkPHP is developed and maintained by the Shanghai Top Thinking company MVC structure of the open-source PHP framework. A SQL injection vulnerability exists in the filterExp function of ThinkPHP 5.0.10 framework. A remote attacker can exploit the vulnerability to obtain sensitive database...

Component Ajax Quiz SQL Injection Vulnerability in Joomla!

Joomla! is the United States Open Source Matters team developed a set of open source content management system CMS. A SQL injection vulnerability exists in the Ajax Quiz component of Joomla! An attacker can exploit the vulnerability to obtain sensitive database information...

PHPSHE open source mall system class_id parameter SQL injection vulnerabilities exist

PHPSHE mall system is a combination of product display, online shopping, order management, payment management, article management, customer consultation feedback and other functions, providing users with online shopping mall construction program. PHPSHE open source mall system classid parameter S...

SQL Injection Vulnerability in Internet Security Management System of Qingdao Hengxin Technology Development Co.

Qingdao Hengxin Technology Development Co., Ltd. is positioned as a high-tech enterprise specializing in the research and development of computer network and information security technology products. Qingdao Hengxin Technology Development Co., Ltd. Internet security management system SQL injectio...

Xycms add_book page b_tittle parameter has SQL injection vulnerability

XYCMS was formerly known as Nanjing XYCMS Enterprise Station Building System, which is a commercial station building system based on ASP development. A SQL injection vulnerability exists in the btittle parameter of the Xycms addbook page. An attacker can exploit the vulnerability to obtain...

YXcmsApp V1.4.3 SQL Injection Vulnerability in Background Deletion of Guestbooks

Yxcms is an enterprise building system based on PHP and mysql technology. A SQL injection vulnerability exists in YXcmsApp V1.4.3 at the background deletion of guestbooks. The lack of filtering of the 'delid' parameter allows attackers to exploit the vulnerability to obtain sensitive database...

SQL Injection Vulnerability in Ocean CMS v_name Parameter

Ocean CMS is an open source website builder. A SQL injection vulnerability exists in the adminajax.php page of Ocean CMS 6.46 utf-8 official version. The lack of filtering of the 'vname' parameter allows an attacker to exploit the vulnerability to obtain sensitive database information...

CVE-2016-9410

MyBB aka MyBulletinBoard before 1.8.7 and MyBB Merge System before 1.8.7 might allow remote attackers to obtain sensitive database information via vectors involving templates...

Information disclosure

MyBB aka MyBulletinBoard before 1.8.7 and MyBB Merge System before 1.8.7 might allow remote attackers to obtain sensitive database information via vectors involving templates...

CVE-2016-9410

MyBB aka MyBulletinBoard before 1.8.7 and MyBB Merge System before 1.8.7 might allow remote attackers to obtain sensitive database information via vectors involving templates...

SQL Injection Vulnerability in BageCms

BageCms is a multi-functional open source web content management system based on php5+mysql5 development. BageCms suffers from a SQL injection vulnerability. The lack of filtering of the 'title' parameter allows attackers to exploit the vulnerability to obtain sensitive database information...

SQL Injection Vulnerability in QuestionId Parameter of Digital Campus Management System of Shanghai Pengda Computer System Development Co.

The digital campus system of Shanghai Pengda Computer System Development Co., Ltd. is a technology platform using .NET+SqlServer. NET+SqlServer technology platform. A SQL injection vulnerability exists in the Digital Campus Management System/BG/GRBG/QuestionManage/GenerQuestionnaire.aspx page of...

SQL injection vulnerability in fields parameter under source/ajax.php file of doyocms system

DOYO universal station-building system using PHP and MYSQL development, is a free open source CMS station-building, enterprise station-building system , can be widely used for personal, business, government, institutions and many other website construction. doyocms system source/ajax.php file und...