CLSA-2026-1779493861 postgresql: Fix of 6 CVEs

CVE-2026-6473: use pallocarray in hstoreplperl/hstoreplpython to avoid integer overflow on 32-bit systems - CVE-2026-6474: guard pgstrftime callers against unsafe conditions and ensure null-terminated output to prevent format-string leak via crafted timezone names - CVE-2026-6475: prevent path...

EUVD-2019-0204

Malware in sbrugna...

PT-2024-37132 · WordPress · Wpstickybar

Name of the Vulnerable Software and Affected Versions: WpStickyBar WordPress plugin versions prior to 2.1.1 Description: The issue arises from the improper sanitization and escaping of a parameter before its use in a SQL statement via an AJAX action. This AJAX action is available to unauthenticat...

PHP Restaurants 1.0 - SQL injection Authentication Bypass & Cross Site Scripting Vulnerabilities

Exploit Title: PHP Restaurants 1.0 - SQLi Authentication Bypass & Cross Site Scripting XSS Exploit Author: Or4nG.M4n Vendor Homepage: https://github.com/jcwebhole Software Link: https://github.com/jcwebhole/phprestaurants Version: 1.0 functions.php function login global $conn; $email =...

CVE-2022-31197

The CVE-2022-31197 issue affects the PostgreSQL JDBC Driver (PgJDBC). The vulnerability lies in the PgJDBC implementation of java.sql.ResultRow.refreshRow(), which does not escape column names, allowing a malicious column name containing a statement terminator (e.g., “;”) to trigger SQL injection...

SQL Injection in forkcms/forkcms

Description When calling the url for deleting one or more tags, the parameter id is vulnerable for SQL injection. Proof of Concept Call an URL like this one as an authenticated user. http://forkcms.site/private/de/tags/massaction?token=n93e05rj0l&id=3;insert into usersemail,password,isgod values...

QIWI: Remote Code Execution on contactws.contact-sys.com via SQL injection in TAktifBankObject.GetOrder in parameter DOC_ID

Summary The API interface on https://contactws.contact-sys.com:3456/ accepts a body to interact with the server's AppServ object. Because of insufficient input validation, an attacker can abuse the DOCID parameter on the TAktifBankObject operation GetOrder to inject arbitrary SQL statements into...

Raptor WAF v0.5 - Web Application Firewall using DFA

Raptor is a Web application firewall made in C, uses DFA to block SQL injection, Cross site scripting and path traversal. to run: $ git clone https://github.com/CoolerVoid/raptorwaf $ cd raptorwaf; make; bin/raptor Note: Don't execute with "cd bin; ./raptor" use full path "bin/raptor" look detail...

JB Visa,1.0,SQL Injection

JB Visa by Joombooking.com, 1.0, SQL Injection...

YxtCMF network classroom reception filter does not strictly lead to SQL injection vulnerabilities

No description provided by source...

ZeusCart 4.0 - SQL Injection / CSRF Vulnerability

Exploit for php platform in category web applications ZeusCart 4.0: SQL Injection Security Advisory – Curesec Research Team 1. Introduction Affected Product: ZeusCart 4.0 Fixed in: not fixed Fixed Version Link: n/a Vendor Contact: email protected Vulnerability Type: SQL Injection Remote...

CSCMS V3.5 最新补丁后 又一个SQL注射（源码详析）

简要描述： CSCMS V3.5 最新补丁后 又一个SQL注射（源码详析） 之前的注射已经修补了，但是还有几处注射点没有注意到 详细说明： 在addslash + 引号保护 的情况下 要格外注意数字型变量的处理 /app/controllers/home.php line:1020 public function gbookdel header"Expires: Mon, 26 Jul 1997 05:00:00 GMT"; header"Cache-Control: no-cache, must-revalidate"; header"Pragma: no-cache";...

Destoon全版本通杀SQL注入2

简要描述： 要过年了，加班加点的。个人觉得不应该仅仅只检测用户的输入，而应该在SQL查询前进行检测才能更好的起到防注入的效果吧，因为人总是有遗漏的。 详细说明： common.inc.php 0x00 if!empty$SERVER'REQUESTURI' stripuri$SERVER'REQUESTURI';//跟进0x01 if$POST $POST = stripsql$POST; stripkey$POST; if$GET $GET = stripsql$GET; stripkey$GET; ... if$POST extract$POST, EXTRSKIP; if$GET...

逐浪CMS通用型SQL注入4+5

简要描述： 对于厂商那么自信说“这些漏洞都是老漏洞，之前就修复了”这种给力的态度，决定再提交两个吧，当完结篇，同时为了不浪费大家打开页面的时间，就都放在一个里面提交了！ 第一个注入点同样是可以直接update的； 第二个注入点还是绕过他那坑爹的“防注入”的。 详细说明： 注入点1： http://demo.zoomla.cn/User/Pages/ViewSmallPub.aspx?Pubid=3&ID=1 Button3Click protected void Button3Clickobject sender, EventArgs e string text =...

EmbryoCore CMS v1.03 Multiple Web Vulnerabilities

Exploit for php platform in category web applications Title: ====== EmbryoCore CMS v1.03 - Multiple Web Vulnerabilities Introduction: ============= EmbryoCore is a blog / content management system written using PHP5 s newest features. Highly customizable, XHTML:Strict compliant, with full...

MiniNuke 2.1 - 'uid' SQL Injection

MiniNuke v2.1 forum SQL Injection AUTHOR : S@BUN HOME : http://www.milw0rm.com/author/1334 MAÄ°L : [email protected] DORK 1 : allinurl:"members.asp?action" DORK 2 : allinurl: "members.asp"uid EXAMPLE= members.asp?action=memberdetails&uid=SQL exploit EXPLOIT 1 :...

SQLGrey SQL injection

SQL injectiuon with sender/recepient e-mails...