Lucene search
+L

198 matches found

osv
osv
added 2023/03/03 7:15 p.m.2 views

CVE-2023-24643

Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateBlankTxtview.php...

9.8CVSS7.3AI score0.00832EPSS
Exploits1References1
nvd
nvd
added 2023/03/03 7:15 p.m.20 views

CVE-2023-24642

Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateTxtview.php...

9.8CVSS9.8AI score0.00832EPSS
Exploits1References1
osv
osv
added 2023/03/03 7:15 p.m.3 views

CVE-2023-24642

Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateTxtview.php...

9.8CVSS7.3AI score0.00832EPSS
Exploits1References1
prion
prion
added 2023/03/03 7:15 p.m.17 views

Sql injection

Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateBlankTxtview.php...

7.5CVSS9.7AI score0.00832EPSS
Exploits1References1Affected Software1
prion
prion
added 2023/03/03 7:15 p.m.21 views

Sql injection

Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateTxtview.php...

7.5CVSS9.7AI score0.00832EPSS
Exploits1References1Affected Software1
vulnrichment
vulnrichment
added 2023/03/03 12:0 a.m.9 views

CVE-2023-24641

Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateview.php...

8.5AI score0.00832EPSS
Exploits1References1
cnnvd
cnnvd
added 2023/03/03 12:0 a.m.5 views

Judging Management System SQL注入漏洞

Judging Management System is a judging management system by Carlo Montero, an individual developer. A security vulnerability exists in Judging Management System v1.0, which is caused by an SQL injection in the sid parameter of the /php-jms/updateBlankTxtview.php page...

9.8CVSS8.6AI score0.00832EPSS
Exploits1References2
cnnvd
cnnvd
added 2023/03/03 12:0 a.m.6 views

Judging Management System SQL注入漏洞

Judging Management System is a review management system by Carlo Montero's personal developer. A security vulnerability exists in Judging Management System version v1.0, which is caused by an SQL injection problem in the sid parameter of the /php-jms/updateview.php page...

9.8CVSS8.6AI score0.00832EPSS
Exploits1References2
cnnvd
cnnvd
added 2023/03/03 12:0 a.m.6 views

Judging Management System SQL注入漏洞

Judging Management System is a judging management system by Carlo Montero, an individual developer. A security vulnerability exists in Judging Management System v1.0, which is caused by an SQL injection in the sid parameter of the /php-jms/updateTxtview.php page...

9.8CVSS8.6AI score0.00832EPSS
Exploits1References2
cve
cve
added 2023/03/03 12:0 a.m.58 views

CVE-2023-24641

CVE-2023-24641 pertains to Judging Management System v1.0, where a SQL injection vulnerability exists in the updateview.php endpoint via the sid parameter. Concrete details across connected sources confirm a high-severity issue (CVSS v3.1: 9.8, CRITICAL) with network access, no user interaction, ...

9.8CVSS9.7AI score0.00832EPSS
Exploits1References1Affected Software1
cvelist
cvelist
added 2023/03/03 12:0 a.m.27 views

CVE-2023-24643

Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateBlankTxtview.php...

10AI score0.00832EPSS
Exploits1References1
cnnvd
cnnvd
added 2022/06/28 12:0 a.m.6 views

Simplessus SQL注入漏洞

Simplessus is a modern software for managing customer relationships from the German company Simplessus. A SQL injection vulnerability exists in Simplessus version 3.7.7. An attacker could exploit this vulnerability to conduct a sql injection attack via the UWASID parameter...

7.5CVSS7.6AI score0.01019EPSS
Exploits1References4
cnvd
cnvd
added 2022/04/24 12:0 a.m.34 views

Sourcecodester Baby Care System SQL注入漏洞(CNVD-2022-35525)

Sourcecodester Baby Care System is an application of the Sourcecodester community in the United States. Sourcecodester Baby Care System v1.0 contains a SQL injection vulnerability that originates in /admin/siteoptions.php & social=remove & sid= where the sid parameter lacks validation for externa...

9.8CVSS3.6AI score0.0122EPSS
Exploits1References1
attackerkb
attackerkb
added 2022/04/21 8:15 p.m.3 views

CVE-2022-28431

Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/siteoptions.php&social=remove&sid=2...

9.8CVSS5.9AI score0.0122EPSS
Exploits1References2
cnnvd
cnnvd
added 2022/04/21 12:0 a.m.6 views

Sourcecodester Baby Care System SQL注入漏洞

Sourcecodester Baby Care System is an application of the Sourcecodester community in the United States. Sourcecodester Baby Care System v1.0 contains a SQL injection vulnerability that originates in /admin/siteoptions.php & social=remove & sid= where the sid parameter lacks validation for externa...

9.8CVSS6.1AI score0.0122EPSS
Exploits1References2
osv
osv
added 2022/03/16 3:15 p.m.5 views

CVE-2021-45821

A blind SQL injection vulnerability exists in Xbtit 3.1 via the sid parameter in ajaxchat/getHistoryChatData.php file that is accessible by a registered user. As a result, a malicious user can extract sensitive data such as usernames and passwords and in some cases use this vulnerability in order...

8.8CVSS6.4AI score0.02505EPSS
Exploits1References3
cnnvd
cnnvd
added 2022/03/16 12:0 a.m.6 views

Xbtit SQL注入漏洞

Xbtit is an open source tracker software. version 3.1 of Xbtit is vulnerable to SQL injection, which stems from a missing filter escape for SQL statements in the sid parameter of the ajaxchat/getHistoryChatData.php file. An attacker could exploit this vulnerability to extract sensitive data such ...

8.8CVSS6.5AI score0.02505EPSS
Exploits1References4
attackerkb
attackerkb
added 2022/01/21 5:15 p.m.8 views

CVE-2021-46308

An SQL Injection vulnerability exists in Sourcecodester Online Railway Reservation Sysytem 1.0 via the sid parameter...

10CVSS8.1AI score0.01556EPSS
Exploits1References2
prion
prion
added 2021/07/22 4:15 p.m.18 views

Sql injection

SQL injection vulnerability in PHPGurukul Student Record System 4.0 allows remote attackers to execute arbitrary SQL statements, via the sid parameter to edit-sub.php...

7.5CVSS9.8AI score0.02924EPSS
Exploits1References4Affected Software1
ptsecurity
ptsecurity
added 2021/07/22 12:0 a.m.6 views

PT-2021-17129 · Unknown · Phpgurukul Student Record System

Name of the Vulnerable Software and Affected Versions: PHPGurukul Student Record System version 4.0 Description: The issue allows remote attackers to execute arbitrary SQL statements. This is achieved via the sid parameter to the "edit-sub.php" endpoint. Recommendations: For PHPGurukul Student...

9.8CVSS9.9AI score0.02924EPSS
Exploits1References6
Rows per page
Query Builder