SQL Injection Vulnerability in Taicang Suyi Information Technology Co.

Taicang Suyi Information Technology Co., Ltd. is a technology-oriented enterprise integrating website construction, software development, mobile application development, interface design and system integration. There is a SQL injection vulnerability in the website building system of Taicang Suyi...

EllisLab CodeIgniter SQL Injection Vulnerability

EllisLab CodeIgniter is the United States EllisLab company for PHP web developers to use a set of application development framework and toolkit . A SQL injection vulnerability exists in the offset method of the Active Record class in EllisLab CodeIgniter versions prior to 2.2.4. A remote attacker...

HamayeshNegar CMS signup component SQL injection vulnerability

HamayeshNegar CMS is a content management system. signup component is one of the signup functionality components. A SQL injection vulnerability exists in the users/signup.php file of the signup component in HamayeshNegar CMS. The vulnerability can be exploited by a remote attacker to execute...

SQL Injection Vulnerability in Website Building System of SHENYI TECHNOLOGY GROUP LIMITED

SHENYI TECHNOLOGY GROUP LIMITED is a comprehensive service-oriented enterprise pioneering website construction and network application services, mobile APP development, big data mining, cloud computing, Internet of Things, smart home, intellectual property agency, investment and financing service...

SQL injection vulnerability in admin.class.php file of UQCMS Cloud B2B2C multi-store system

UQCMS cloud business system is a program using PHP + MYSQL, template using smarty template B2B2C e-commerce software. UQCMS cloud business B2B2C multi-store system admin.class.php file SQL injection vulnerability, attackers can exploit the vulnerability to obtain database sensitive information...

SQL injection vulnerability in user.mod.php file of UQCMS Cloud B2B2C multi-store system

UQCMS cloud business system is a program using PHP + MYSQL, template using smarty template B2B2C e-commerce software. UQCMS Cloud Business B2B2C multi-store system user.mod.php file has a SQL injection vulnerability, attackers can use the vulnerability to obtain sensitive database information...

Vulnerability of the Server:Partition component of the MySQL database management system, which allows attackers to gain privileges to modify, add, or delete data, or to cause service interruptions.

The vulnerability of the Server:Partition component of the MySQL database management system is related to deficiencies in access control. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain privileges to modify, add, or delete data, or cause service failures...

YzmCMS SQL Injection Vulnerability

YzmCMS is an open source CMS Content Management System developed by Chinese programmer Yuan Zhimeng. A SQL injection vulnerability exists in the \application\admin\controller\updateurls.class.php file in YzmCMS version 3.6. A remote attacker can exploit this vulnerability by sending a 'catids'...

Saxum Numerology Component SQL Injection Vulnerability in Joomla!

Joomla! is an open source content management system CMS. A SQL injection vulnerability exists in the Saxum Numerology component of Joomla! that allows remote attackers to submit a specially crafted SQL request to manipulate the database, which can be used to obtain sensitive information or execut...

PHP Scripts Mall Schools Alert Management Script SQL Injection Vulnerability

PHP Scripts Mall Schools Alert Management Script is a school management system script by PHP Scripts Mall India. A SQL injection vulnerability exists in PHP Scripts Mall Schools Alert Management Script version 2.0.2. A remote attacker can exploit this vulnerability to bypass authentication...

SQL Injection Vulnerability in UQCMS Mall System admin.class.php Page

UQCMS cloud business system is a B2B2C e-commerce software with the program using PHP+MYSQL and the template using smarty template. UQCMS cloud business system admin.class.php page SQL injection vulnerability, the vulnerability stems from the program does not adequately filter the input submitted...

Multiple SQL Injection Vulnerabilities in Saifor CVMS HUBs

Saifor CVMS HUB is a data center visual management system from the Saifor team in Spain. Multiple SQL injection vulnerabilities exist in Saifor CVMS HUB version 1.3.1. A remote attacker can exploit this vulnerability by sending multiple parameters to /cvms-hub/privado/seccionesmib/secciones.xhtml...

CVE-2018-1414

IBM Maximo Asset Management 7.5 and 7.6 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 138820...

CVE-2018-0825

StructuredQuery in Windows 7 SP1, Windows 8.1 and RT 8.1, Windows Server 2008 SP2 and R2 SP1, Windows Server 2012 and R2, Windows 10 Gold, 1511, 1607, 1703 and 1709, Windows Server 2016 and Windows Server, version 1709 allows a remote code execution vulnerability due to how objects are handled in...

Cisco Unified Communications Manager SQL Injection Vulnerability (CNVD-2018-05337)

Cisco Unified Communications Manager CUCM, Unified CM, CallManager is a call-processing component of a unified communications system from Cisco. The component provides a scalable, distributable and highly available enterprise IP telephony call processing solution. A SQL injection vulnerability...

ZhandexMap SQL Injection Vulnerability in Joomla!

Joomla! is the United States Open Source Matters team developed a set of open source content management system CMS, the system provides RSS feeds, site search and other functions.Zh YandexMap is used in one of the distribution of maps through the Yandex Maps service component . A SQL injection...

Worry-Free Shopping System ASP General Edition suffers from SQ Injection Vulnerability

Hassle-free shopping system ASP General Edition is a shopping site based on ASP/Access development of general management system set up. Worry-Free Shopping System ASP General Edition suffers from SQL injection vulnerability, which can be exploited by attackers to obtain sensitive database...

SQL Injection Vulnerability in Shop7z Online Shopping System Supreme Edition

Shop7z online shopping system is ASP online store platform software, providing comprehensive application services based on Internet solutions. Shop7z Online Shopping System Supreme Edition suffers from SQL injection vulnerability, which can be exploited by attackers to access or modify database...

SQL Injection Vulnerability in Uno Network Technology Website Building System

Shenyang Uno Technology Co., Ltd. is a one-stop service brand marketing planning company committed to providing Chinese enterprises with one-stop service suitable for the development of the times, integrating enterprise station building, search engine optimization, WAP website, APP client and so...

SQL Injection Vulnerability in Chiayi County's Management Resources Inquiry System

The Kiawah County Management Information System is a content management system. Chiayi County Management Information Query System suffers from SQL injection vulnerability, which can be exploited by attackers to access or modify sensitive database information...