The vulnerability in the web interface of the software-hardware management interface for Cisco Firepower Management Center allows a malicious actor to execute arbitrary SQL queries.

The vulnerability of the web interface for managing the software-hardware environment of Cisco Firepower Management Center is related to input validation errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...

The vulnerability in the web interface of the software-hardware management interface for Cisco Firepower Management Center allows a malicious actor to execute arbitrary SQL queries.

The vulnerability of the web interface for managing the software-hardware environment of Cisco Firepower Management Center is related to input validation errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL queries remotely...

Chengdu Firefox Technology Co., Ltd. website builder system suffers from SQL injection vulnerabilities

Chengdu Firefox Technology Co., Ltd. is a set of research, promotion and development of new technology areas of the network, mainly dedicated to the enterprise information technology services of professional network companies, with a number of Internet-related products and services. Chengdu Firef...

SQL injection vulnerability in the frontend of Queue Evaluation Integrated Management System V5.3 (CNVD-2019-41011)

Queuing evaluation integrated management system V5.3, make full use of the queuing time for self-service filling operations, fill out a single queue but not the number, lifting the customer to fill out a single worry. SQL injection vulnerability exists in the frontend of Queue Evaluation Integrat...

SQL Injection

Overview knex is a query builder for PostgreSQL, MySQL and SQLite3 Affected versions of this package are vulnerable to SQL Injection. None Remediation Upgrade knex to version 0.19.5 or higher. References - GitHub Commit - GitHub PR Credit: Snyk Security Research Team...

SQL Injection Vulnerability in Student Assessment System of Citycom Technology

Shandong Chengtong Technology Co., Ltd. is a company mainly engaged in the development and sale of computer software and hardware; computer system integration services and other projects. There is a SQL injection vulnerability in the Student Literacy Assessment System of Chengtong Technology, whi...

S-CMS php version enterprise website building system v3.0 SQL injection vulnerability in background aj*** N*** parameters (CNVD-2019-40101)

S-CMS enterprise station building system is Zibo Shining Network Technology Co., Ltd. developed a specialized enterprise station building solutions for the product. S-CMS php version of the enterprise website building system v3.0 background aj N parameter there is a SQL injection vulnerability, t...

S-CMS php version enterprise website builder system v3.0 SQL injection vulnerability in background aj***2 parameter

S-CMS enterprise station building system is Zibo Shining Network Technology Co., Ltd. developed a specialized enterprise station building solutions for the product. S-CMS php version of the enterprise website building system v3.0 background aj2 parameters exist SQL injection vulnerability,...

The vulnerability of the InnoDB component in the MySQL Database Management System allows attackers to gain access to modify, add, or delete data, causing system downtime or service failures.

The vulnerability of the InnoDB component in the MySQL Database Management System is related to deficiencies in access control. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to modify, add, or delete data, causing system downtime or service failures...

Vulnerability of the Server component: The MySQL Server database management system component, which allows a hacker to cause a service failure.

The vulnerability of the Server component: The DDL system for managing MySQL databases involves deficiencies in access control. Exploiting this vulnerability can allow a malicious actor to cause service interruptions remotely...

The vulnerability of the “symfony/dependency-injection” service identifier on the Symfony software platform for web application development and management arises from the lack of protective measures for SQL query structures. This allows attackers to execute arbitrary code through SQL injection attacks.

The vulnerability of the “symfony/dependency-injection” service identifier on the Symfony software platform for web application development and management is related to the lack of measures to protect SQL query structures. Exploiting this vulnerability allows an attacker to execute arbitrary code...

SQL injection vulnerability in the co***.cl***.php file of the Seven Bears library system

Seven bears library system a similar Baidu library online document preview, selling system. A SQL injection vulnerability exists in the co.cl.php file. An attacker can exploit the vulnerability to obtain sensitive information from the database...

eBrigade SQL Injection Vulnerability (CNVD-2019-35770)

eBrigade is a rescue team management system. The system includes personnel management, vehicle management and equipment management. A SQL injection vulnerability exists in eBrigade versions prior to 5.0, which can be exploited by attackers to execute illegal SQL commands...

ShopsN open source mall system Go***::cl*** file with SQL injection vulnerabilities

ShopsN open source mall system is a product of Shanghai Yiso Network Technology Co., Ltd. an enterprise-class commercial standard full-featured allow free commercial use of open source online store full network system . ShopsN open source mall system Go::cl file SQL injection vulnerability ,...

SQL Injection Vulnerability in the Basic Website of Shenzhen Tiandixin Network Technology Co.

Founded in 2010, Tiandixin Network is an enterprise mainly focusing on corporate website construction, Baidu home page natural ranking, domain name registration, space rental, enterprise post office, 400 telephone, corporate VI design, electronic album production and other services. The basic...

Yantai Cloud Pulse Network CMS website building system has SQL injection vulnerability

Yantai Cloud Pulse Network Technology Co., Ltd. is a professional website construction and search engine marketing services provider. Dedicated to small and medium-sized enterprises network marketing services, and website construction, enterprise version of the PC website construction, three-in-o...

SQL Injection Vulnerability in Kaixin Quote System V2.0

Qixing Quotation System V2.0 is a general management system developed for material quotations. The Qixing Quotation System V2.0 suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive information from the database...

ShopsN open source mall system In***::go*** file with SQL injection vulnerabilities

ShopsN open source mall system is a product of Shanghai Yiso Network Technology Co., Ltd. an enterprise-class commercial standard full-featured allow free commercial use of open source online store full network system . ShopsN open source mall system In::go file there is a SQL injection...

SQL Injection Vulnerability in VANOC Enterprise Website Management System c****r.php Page

Fanno enterprise website management system is a website construction system developed by Cangzhou City Fanno Advertising Media Co. Vanno enterprise website management system cr.php page SQL injection vulnerability, attackers can use the vulnerability to obtain database sensitive information...

CVE-2019-16724

File Sharing Wizard 1.5.0 allows a remote attacker to obtain arbitrary code execution by exploiting a Structured Exception Handler SEH based buffer overflow in an HTTP POST parameter, a similar issue to CVE-2010-2330 and CVE-2010-2331...