The vulnerability of the NVBUEventHistory Get request handler in the NetVault Backup software allows a attacker to execute arbitrary code.

The vulnerability of the NVBUEventHistory Get request handler in the NetVault Backup data archiving and restoration software lies in the insufficient protection of the SQL query structure. Exploiting this vulnerability allows an attacker, operating remotely, to execute arbitrary code...

The vulnerability of the NVBUBackupTargetSet Get request in the software for data archiving and restoration by NetVault Backup allows a attacker to execute arbitrary code.

The vulnerability of the NVBUBackupTargetSet Get request handler in the NetVault Backup software for data archiving and restoration is related to insufficient protection of the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the NVBUPhaseStatus GetPlugins request handler in NetVault Backup software allows a attacker to execute arbitrary code.

The vulnerability of the NVBUPhaseStatus GetPlugins handler in NetVault Backup software relates to insufficient protection of the SQL query structure. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

CwCms v1.8_asp Exists SQL Injection Vulnerability

CwCMS is a customized ASP+Access/MsSql content management system specifically designed for corporate websites. CwCms v1.8asp suffers from a SQL injection vulnerability. The vulnerability stems from the program does not strictly filter parameters. An attacker can exploit this vulnerability to obta...

CVE-2018-8820

An issue was discovered in Square 9 GlobalForms 6.2.x. A Time Based SQL injection vulnerability in the "match" parameter allows remote authenticated attackers to execute arbitrary SQL commands. It is possible to upgrade access to full server compromise via xpcmdshell. In some cases, the...

Unisys ClearPath MCP OS and ClearPath OS 2200 ePortal Manager SQL Injection Vulnerability

Unisys ClearPath MCP OS and ClearPath OS 2200 are both dedicated operating systems for ClearPath servers from Unisys Corporation of the United States. ePortal Manager is one of the enterprise portal managers. An SQL injection vulnerability exists in the management interface of ePortal Manager on...

The vulnerability of the NVBUBackup PluginList request handler in the NetVault Backup software for data archiving and restoration allows a perpetrator to execute arbitrary code.

The vulnerability of the NVBUBackup PluginList request processor in the NetVault Backup data archiving and restoration software relates to insufficient protection of the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the NVBUBackup Count request handler in the NetVault Backup software for data archiving and restoration allows a perpetrator to execute arbitrary code.

The vulnerability of the NVBUBackup Count request handler in the NetVault Backup data archiving and restoration software relates to insufficient protection of the SQL query structure. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

The vulnerability of the NVBUBackupSegment Get request handler in the NetVault Backup software allows a attacker to execute arbitrary code.

The vulnerability of the NVBUBackupSegment Get request handler in the NetVault Backup data archiving and restoration software relates to insufficient protection of the SQL query structure. Exploiting this vulnerability allows an attacker operating remotely to execute arbitrary code...

The vulnerability of the NVBUScheduleSet request handler in the software for data archiving and restoration by NetVault Backup allows a perpetrator to execute arbitrary code.

The vulnerability of the NVBUScheduleSet request handler in software for data archiving and restoration by NetVault Backup is related to insufficient protection of the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

The vulnerability of the HPE Network Automation system allows a attacker to bypass authentication procedures and gain increased privileges.

The vulnerability of the HPE Network Automation system management system is related to insufficient protection of the SQL query structure. Exploiting this vulnerability allows a malicious actor to bypass authentication procedures and gain increased privileges...

The vulnerability of the NVBUJobDefinition Get request handler in the NetVault Backup software allows a attacker to execute arbitrary code.

The vulnerability of the NVBUJobDefinition Get request handler in the NetVault Backup data archiving and restoration software lies in the insufficient protection of the SQL query structure. Exploiting this vulnerability allows an attacker, operating remotely, to execute arbitrary code...

The vulnerability of the NVBUBackupOptionSet Get request handler in the NetVault Backup software allows a attacker to execute arbitrary code.

The vulnerability of the NVBUBackupOptionSet Get request handler in the NetVault Backup data archiving and restoration software lies in the insufficient protection of the SQL query structure. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

The vulnerability of the NVBUBackup TimeRange request handler in the NetVault Backup software for data archiving and restoration allows a perpetrator to execute arbitrary code.

The vulnerability of the NVBUBackup TimeRange request handler in the NetVault Backup software for data archiving and restoration is related to insufficient protection of the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

SQL injection vulnerability in Monxin Forms System \program\talk\show\set_group.php page

Monxin Forms System is an open source program that runs on PHP+MySQL. A SQL injection vulnerability exists in the \program\talk\show\setgroup.php page of Monxin Forms System. An attacker can exploit this vulnerability to obtain sensitive information from the database...

zzcms SQL Injection Vulnerability (CNVD-2018-06859)

ZZCMS is a CMS Content Management System used to quickly build Merchants type websites. A security vulnerability exists in ZZCMS version 8.2. An attacker can use the 'id' parameter in adv2.php?action=modify request to inject SQL commands and obtain passwords...

Geutebruck IP Cameras SQL Injection Vulnerability

The G-Cam/EFD-2250 and Topline TopFD-2125 are both HD cameras from Geutebruck. A SQL injection vulnerability exists in Geutebruck IP Cameras, which allows attackers to exploit the vulnerability to alter stored data...

Kentico SQL Injection Vulnerability

Kentico is the United States Kentico Software Corporation of a set of ASP.NET-based content management system CMS. The system consists of two main tools : Kentico CMS Desk is used to edit the content of the page ; Kentico CMS Controls is used to edit and control various elements of the page . An...

SQL Injection Vulnerability in MaxCMS Version 4.0

Movie System Max Program MaxCMS is an open source program that specializes in serving the construction of movie websites. MaxCMS version 4.0 suffers from a SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database information...

SQL injection vulnerability in cms_admin_edit.php file of VANOC enterprise website management system (PHP version)

Vanno enterprise website management system PHP version is a php+MySQL development of php enterprise website management system. An SQL injection vulnerability exists in the cmsadminedit.php file of the Vanno Enterprise Website Management System PHP Edition. An attacker can exploit the vulnerabilit...