198 matches found
CVE-2023-24643
Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateBlankTxtview.php...
CVE-2023-24642
Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateTxtview.php...
CVE-2023-24642
Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateTxtview.php...
Sql injection
Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateBlankTxtview.php...
Sql injection
Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateTxtview.php...
CVE-2023-24641
Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateview.php...
Judging Management System SQL注入漏洞
Judging Management System is a judging management system by Carlo Montero, an individual developer. A security vulnerability exists in Judging Management System v1.0, which is caused by an SQL injection in the sid parameter of the /php-jms/updateBlankTxtview.php page...
Judging Management System SQL注入漏洞
Judging Management System is a review management system by Carlo Montero's personal developer. A security vulnerability exists in Judging Management System version v1.0, which is caused by an SQL injection problem in the sid parameter of the /php-jms/updateview.php page...
Judging Management System SQL注入漏洞
Judging Management System is a judging management system by Carlo Montero, an individual developer. A security vulnerability exists in Judging Management System v1.0, which is caused by an SQL injection in the sid parameter of the /php-jms/updateTxtview.php page...
CVE-2023-24641
CVE-2023-24641 pertains to Judging Management System v1.0, where a SQL injection vulnerability exists in the updateview.php endpoint via the sid parameter. Concrete details across connected sources confirm a high-severity issue (CVSS v3.1: 9.8, CRITICAL) with network access, no user interaction, ...
CVE-2023-24643
Judging Management System v1.0 was discovered to contain a SQL injection vulnerability via the sid parameter at /php-jms/updateBlankTxtview.php...
Simplessus SQL注入漏洞
Simplessus is a modern software for managing customer relationships from the German company Simplessus. A SQL injection vulnerability exists in Simplessus version 3.7.7. An attacker could exploit this vulnerability to conduct a sql injection attack via the UWASID parameter...
Sourcecodester Baby Care System SQL注入漏洞(CNVD-2022-35525)
Sourcecodester Baby Care System is an application of the Sourcecodester community in the United States. Sourcecodester Baby Care System v1.0 contains a SQL injection vulnerability that originates in /admin/siteoptions.php & social=remove & sid= where the sid parameter lacks validation for externa...
CVE-2022-28431
Baby Care System v1.0 was discovered to contain a SQL injection vulnerability via /admin/siteoptions.php&social=remove&sid=2...
Sourcecodester Baby Care System SQL注入漏洞
Sourcecodester Baby Care System is an application of the Sourcecodester community in the United States. Sourcecodester Baby Care System v1.0 contains a SQL injection vulnerability that originates in /admin/siteoptions.php & social=remove & sid= where the sid parameter lacks validation for externa...
CVE-2021-45821
A blind SQL injection vulnerability exists in Xbtit 3.1 via the sid parameter in ajaxchat/getHistoryChatData.php file that is accessible by a registered user. As a result, a malicious user can extract sensitive data such as usernames and passwords and in some cases use this vulnerability in order...
Xbtit SQL注入漏洞
Xbtit is an open source tracker software. version 3.1 of Xbtit is vulnerable to SQL injection, which stems from a missing filter escape for SQL statements in the sid parameter of the ajaxchat/getHistoryChatData.php file. An attacker could exploit this vulnerability to extract sensitive data such ...
CVE-2021-46308
An SQL Injection vulnerability exists in Sourcecodester Online Railway Reservation Sysytem 1.0 via the sid parameter...
Sql injection
SQL injection vulnerability in PHPGurukul Student Record System 4.0 allows remote attackers to execute arbitrary SQL statements, via the sid parameter to edit-sub.php...
PT-2021-17129 · Unknown · Phpgurukul Student Record System
Name of the Vulnerable Software and Affected Versions: PHPGurukul Student Record System version 4.0 Description: The issue allows remote attackers to execute arbitrary SQL statements. This is achieved via the sid parameter to the "edit-sub.php" endpoint. Recommendations: For PHPGurukul Student...