309 matches found
Design/Logic Flaw
SEMCMS SHOP v 1.1 is vulnerable to SQL via AntMessage.php...
Microsoft WDAC OLE DB provider for SQL Server Remote Code Execution Vulnerability
...
Online Notice Board 2022 SQL injection Vulnerability
Title: ONLINE-NOTICE-BOARD-2022 SQLi Author: nu11secur1ty Vendor: https://www.sourcecodester.com/users/razormist Software: https://www.sourcecodester.com/php/14317/online-notice-board-system.html Reference:...
PT-2022-5984 · Centreon · Centreon
Name of the Vulnerable Software and Affected Versions: Centreon affected versions not specified Description: The issue is related to the lack of protection for the SQL query structure in Centreon, a software for monitoring IT infrastructure. This could allow a remote attacker to execute arbitrary...
CVE-2022-34953
Pharmacy Management System v1.0 was discovered to contain a SQL injection vulnerability via the startDate parameter at getOrderReport.php...
CVE-2022-34006
An issue was discovered in TitanFTP aka Titan FTP NextGen before 1.2.1050. When installing, Microsoft SQL Express 2019 installs by default with an SQL instance running as SYSTEM with BUILTIN\Users as sysadmin, thus enabling unprivileged Windows users to execute commands locally as NT...
Sourcecodester Baby Care System SQL注入漏洞(CNVD-2022-35531)
Sourcecodester Baby Care System is an application of the Sourcecodester community in the United States. Sourcecodester Baby Care System v1.0 contains a SQL injection vulnerability that originates in /admin/inbox.php & action=delete & msgid= where the msgid parameter lacks validation for external...
Mageia: Security Advisory (MGASA-2022-0111)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
RHEL 8 : cyrus-sasl (RHSA-2022:0730)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:0730 advisory. The cyrus-sasl packages contain the Cyrus implementation of Simple Authentication and Security Layer SASL. SASL is a method for adding authentication...
SUSE SLES11 Security Update : cyrus-sasl (SUSE-SU-2022:14894-1)
The remote SUSE Linux SLES11 host has packages installed that are affected by a vulnerability as referenced in the SUSE- SU-2022:14894-1 advisory. - In Cyrus SASL 2.1.17 through 2.1.27 before 2.1.28, plugins/sql.c does not escape the password for a SQL INSERT or UPDATE statement. CVE-2022-24407...
USN-5301-2: Cyrus SASL vulnerability
USN-5301-1 fixed a vulnerability in Cyrus. This update provides the corresponding update for Ubuntu 14.04 ESM and Ubuntu 16.04 ESM. Original advisory details: It was discovered that the Cyrus SASL SQL plugin incorrectly handled SQL input. A remote attacker could use this issue to execute arbitrar...
Design/Logic Flaw
XMPie uStore 12.3.7244.0 allows for administrators to generate reports based on raw SQL queries. Since the application ships with default administrative credentials, an attacker may authenticate into the application and exfiltrate sensitive information from the database...
CVE-2021-46445
H.H.G Multistore v5.1.0 and below was discovered to contain a SQL injection vulnerability via /admin/categories.php?boxgroupid...
Xiuno BBS Cross-Site Scripting Vulnerability (CNVD-2021-85272)
Xiuno BBS is an open source forum program based on PHP and MySQL. Xiuno BBS suffers from a cross-site scripting vulnerability that stems from the product's installinstall.sql component failing to properly validate user input data. An attacker can execute arbitrary web script and HTML by modifying...
PT-2021-7498 · Mariadb +10 · Mariadb Server +10
Name of the Vulnerable Software and Affected Versions: MariaDB Server versions 10.6 and below Description: An issue in the component Field::set default of MariaDB Server was discovered to allow attackers to cause a Denial of Service DoS via specially crafted SQL statements. The vulnerability is...
PT-2021-7501 · Mariadb +10 · Mariadb Server +10
Name of the Vulnerable Software and Affected Versions: MariaDB Server versions 10.6.3 and below Description: An issue in the component my decimal::operator= of MariaDB Server was discovered to allow attackers to cause a Denial of Service DoS via specially crafted SQL statements. The vulnerability...
ECSIMAGING PACS 6.21.5 SQL Injection
Exploit Title: ECSIMAGING PACS 6.21.5 - SQL injection Date: 06/01/2021 Exploit Author: shoxxdj Vendor Homepage: https://www.medicalexpo.fr/ Version: 6.21.5 and bellow tested on 6.21.5,6.21.3 Tested on: Linux ECSIMAGING PACS Application in 6.21.5 and bellow suffers from SQLinjection vulnerability...
PT-2020-6771 · Zyxel · Zyxel Cloudcnm Secumanager
Name of the Vulnerable Software and Affected Versions: Zyxel CloudCNM SecuManager versions 3.1.0 through 3.1.1 Description: The issue is related to a lack of protection for the SQL query structure in the Zyxel CloudCNM SecuManager software. This can be exploited by a remote attacker to gain...
CVE-2019-20858
An issue was discovered in Mattermost Server before 5.15.0. It allows attackers to cause a denial of service CPU consumption via crafted characters in a SQL LIKE clause to an APIv4 endpoint...
Concrete CMS: Time-base SQL Injection in Search Users
Description ===================== I've identified an SQL injection vulnerability in the website labs.data.gov that affects the endpoint /index.php/dashboard/users/search and can be exploited via the fSearchDefaultSortDirection param. I didn't extract any data from the database, I've confirmed the...