Lucene search
K

22 matches found

CNNVD
CNNVD
added 2025/12/18 12:0 a.m.4 views

WBiz Desk SQL注入漏洞

WBiz Desk is a work order management system of WBiz open source. A SQL injection vulnerability exists in WBiz Desk version 1.2, which originates from the tk parameter in ticket.php may be injected with malicious SQL statements, resulting in SQL injection attacks...

5.4CVSS7.9AI score0.00179EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2009-2423

Malware in sbrugna...

7.5CVSS6.4AI score0.00969EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2009-4638

Malware in sbrugna...

7.5CVSS6.4AI score0.0242EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/09/18 12:0 a.m.7 views

PT-2025-38319

Name of the Vulnerable Software and Affected Versions PHPGurukul Small CRM version 4.0 Description A SQL injection issue exists in PHPGurukul Small CRM 4.0. The issue is located in the file /create-ticket.php within an unknown function. Manipulation of the subject argument can lead to SQL...

9.8CVSS7.5AI score0.00387EPSS
Exploits1References10
Positive Technologies
Positive Technologies
added 2023/08/28 12:0 a.m.6 views

PT-2023-27631 · Phpjabbers · Phpjabbers Ticket Support Script

Name of the Vulnerable Software and Affected Versions: PHPJabbers Ticket Support Script version 3.2 Description: The issue occurs during password recovery, where a difference in messages could allow an attacker to determine if the user is valid or not, enabling a brute force attack with valid...

9.8CVSS9.2AI score0.00746EPSS
Exploits0References8
OSV
OSV
added 2023/08/10 3:15 p.m.5 views

CVE-2023-39776

A File Upload vulnerability in PHPJabbers Ticket Support Script v3.2 allows attackers to execute arbitrary code via uploading a crafted file...

9.8CVSS6.2AI score0.00927EPSS
Exploits0References2
OSV
OSV
added 2023/05/24 11:15 a.m.4 views

CVE-2023-2865

A vulnerability was found in SourceCodester Theme Park Ticketing System 1.0. It has been classified as critical. This affects an unknown part of the file printticket.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql injection. It is possible to initiate...

9.8CVSS6.5AI score0.00726EPSS
Exploits1References3
OSV
OSV
added 2017/12/13 9:29 a.m.4 views

CVE-2017-17632

Responsive Events And Movie Ticket Booking Script 3.2.1 has SQL Injection via the findcity.php q parameter...

9.8CVSS5.8AI score0.02204EPSS
Exploits1References2
CNVD
CNVD
added 2015/06/23 12:0 a.m.3 views

TickFa SQL Injection Vulnerability

TickFa is an online customer support system. TickFa suffers from a SQL injection vulnerability due to the failure of the program's ticket.php script to correctly 'tid' parameter input, which allows remote attackers to exploit the vulnerability by submitting a specially crafted SQL query to...

6.5CVSS8.1AI score0.01503EPSS
Exploits1References1
NVD
NVD
added 2010/03/05 6:30 p.m.22 views

CVE-2009-4674

admin/admin.php in Mole Group Sky Hunter Airline Ticket Sale Script and Bus Ticket Script allows remote attackers to change an arbitrary password via a modified userid field...

7.5CVSS6.9AI score0.0242EPSS
Exploits0References3
Prion
Prion
added 2010/03/05 6:30 p.m.16 views

Code injection

admin/admin.php in Mole Group Sky Hunter Airline Ticket Sale Script and Bus Ticket Script allows remote attackers to change an arbitrary password via a modified userid field...

7.5CVSS7.5AI score0.0242EPSS
Exploits0References3
CVE
CVE
added 2010/03/05 6:0 p.m.46 views

CVE-2009-4674

The CVE-2009-4674 entry affects Mole Group Sky Hunter Airline Ticket Sale Script and Bus Ticket Script. The flaw in admin/admin.php allows remote attackers to change an arbitrary password by modifying a user_id field, indicating an authentication/configuration weakness in the user management func...

7.5CVSS7.1AI score0.0242EPSS
Exploits0References3Affected Software2
Prion
Prion
added 2009/07/10 5:30 p.m.12 views

Sql injection

Multiple SQL injection vulnerabilities in Tausch Ticket Script 3 allow remote attackers to execute arbitrary SQL commands via the 1 userid parameter to suchauftraegeuser.php and the 2 descr parameter to vote.php; and other unspecified vectors...

7.5CVSS9.3AI score0.00969EPSS
Exploits1References3Affected Software1
NVD
NVD
added 2009/07/10 5:30 p.m.21 views

CVE-2009-2428

Multiple SQL injection vulnerabilities in Tausch Ticket Script 3 allow remote attackers to execute arbitrary SQL commands via the 1 userid parameter to suchauftraegeuser.php and the 2 descr parameter to vote.php; and other unspecified vectors...

7.5CVSS8.5AI score0.00969EPSS
Exploits1References3
CVE
CVE
added 2009/07/10 5:0 p.m.40 views

CVE-2009-2428

The CVE-2009-2428 entry concerns the Tausch Ticket Script 3 with multiple SQL injection vulnerabilities. The documented vectors include the (1) userid parameter to suchauftraege_user.php and the (2) descr parameter to vote.php, plus other unspecified vectors. Attack potential is remote, enabling ...

7.5CVSS8.8AI score0.00969EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2009/07/10 5:0 p.m.22 views

CVE-2009-2428

Multiple SQL injection vulnerabilities in Tausch Ticket Script 3 allow remote attackers to execute arbitrary SQL commands via the 1 userid parameter to suchauftraegeuser.php and the 2 descr parameter to vote.php; and other unspecified vectors...

8.5AI score0.00969EPSS
Exploits1References3
Packet Storm
Packet Storm
added 2009/07/08 12:0 a.m.27 views

Tausch Ticket Script SQL Injection

-----------------------------I AM MUSLIM !!------------------------------ ============================================================================== / \ | | | | / \ | | | | / \ | | | | / \ | || | / \ | | | | / \ | | IN THE NAME OF // \ || || // \ || ||...

0.5AI score
Exploits0
exploitpack
exploitpack
added 2009/07/07 12:0 a.m.10 views

Tausch Ticket Script 3 - vote.php?descr SQL Injection

Tausch Ticket Script 3 - vote.php?descr SQL Injection source: https://www.securityfocus.com/bid/43710/info Tausch Ticket Script is prone to multiple SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to compromi...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2009/07/07 12:0 a.m.13 views

Tausch Ticket Script 3 - suchauftraege_user.php?userid SQL Injection

Tausch Ticket Script 3 - suchauftraegeuser.php?userid SQL Injection source: https://www.securityfocus.com/bid/43710/info Tausch Ticket Script is prone to multiple SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input. Exploiting these issues could allow an attack...

Exploits0
Exploit DB
Exploit DB
added 2009/07/07 12:0 a.m.20 views

Tausch Ticket Script 3 - 'vote.php?descr' SQL Injection

source: https://www.securityfocus.com/bid/43710/info Tausch Ticket Script is prone to multiple SQL-injection vulnerabilities because it fails to properly sanitize user-supplied input. Exploiting these issues could allow an attacker to compromise the application, access or modify data, or exploit...

7.4AI score
Exploits0
Rows per page
Query Builder