24 matches found
CVE-2026-34402
ChurchCRM (open-source church management software) contains a time-based blind SQL injection vulnerability in PropertyAssign.php that affects versions before 7.1.0. With Edit Records or Manage Groups permissions, authenticated users can exfiltrate or modify any database content, including user cr...
CVE-2019-25461
Web Ofisi Platinum E-Ticaret v5 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'q' parameter. Attackers can send POST requests to the ajax/productsFilterSearch endpoint with malicious 'q' values using...
CVE-2025-68400
ChurchCRM prior to v6.5.3 is affected by a SQL Injection in the legacy endpoint /Reports/ConfirmReportEmail.php. The issue arises from an unvalidated familyId parameter in a historically removed UI feature that remains reachable directly (dead but reachable code). Any authenticated user, even wit...
PT-2025-51059
The افزونه پیامک ووکامرس فوق حرفه ای جدید payamito sms woocommerce plugin for WordPress is vulnerable to time-based blind SQL Injection via the 'columns' parameter in all versions up to, and including, 1.3.5. This is due to insufficient escaping on the user supplied parameter and lack of sufficie...
EUVD-2023-38544
Malicious code in bioql PyPI...
CVE-2023-34487
itsourcecode Online Hotel Management System Project In PHP v1.0.0 is vulnerable to SQL Injection. SQL injection points exist in the login password input box. This vulnerability can be exploited through time-based blind injection...
ChurchCRM 安全漏洞
ChurchCRM is an open source CRM system for churches. A security vulnerability exists in ChurchCRM version 5.5.0 that stems from a time-based SQL blind injection vulnerability in the CurrentFundraiser GET parameter of the FRCatalog.php page. No details of the vulnerability are provided at this tim...
Sql injection
itsourcecode Online Hotel Management System Project In PHP v1.0.0 is vulnerable to SQL Injection. SQL injection points exist in the login password input box. This vulnerability can be exploited through time-based blind injection...
CVE-2023-34487
itsourcecode Online Hotel Management System Project In PHP v1.0.0 is vulnerable to SQL Injection. SQL injection points exist in the login password input box. This vulnerability can be exploited through time-based blind injection...
CVE-2023-34487
itsourcecode Online Hotel Management System Project In PHP v1.0.0 is vulnerable to SQL Injection. SQL injection points exist in the login password input box. This vulnerability can be exploited through time-based blind injection...
CVE-2023-34487
The CVE-2023-34487 entry is confirmed with concrete details in connected data: itsourcecode Online Hotel Management System Project In PHP v1.0.0 is vulnerable to SQL Injection via the login password input field. An external GitHub exploit demonstrates a time-based blind SQL injection against the ...
Huntpad - The Bug Hunter's Notepad
Syhunt Huntpad is a notepad application with features that are particularly useful to penetration testers and bug hunters - a collection of common injection string generators, hash generators, encoders and decoders, HTML and text manipulation functions, and so on, coupled with syntax highlighting...
Property Listing Script - 'propid' Blind SQL Injection
Exploit Title: Property Listing Script – Time-Based Blind Injection Date: 02.02.2017 Vendor Homepage: http://phprealestatescript.org/ Software Link: http://phprealestatescript.org/property-listing-script.html Exploit Author: Kaan KAMIS Contact: iletisimatk2andotcom Website: http://k2an.com...
某通用型电子采购系统Oracle盲注漏洞
简要描述: 捡漏啊 详细说明: 前人有经验: WooYun: 某通用型电子采购平台SQL注射(涉及大量企业) 厂商: http://www.1caitong.com/ 北京网达信联科技发展有限公司 SQL注入点: /GetPassWord.aspx POST参数txtUserName存在注入 Case: http://eps.umgg.com.cn/GetPassWord.aspx http://ygcg.xuangang.com.cn/GetPassWord.aspx http://222.134.89.6/GetPassWord.aspx...
mcms最新版SQL注入一枚(可出任意数据)
简要描述: mcms最新版SQL注入一枚(可出任意数据) 详细说明: 掌易科技的程序员反应相当快啊,确认漏洞当天就修复以后出新版本了,前面在wooyun提的几个漏洞新版的mcms做了相应的处理,发布了新版v3.1.3.enterprise,再来研究研究。 注入一枚:POST /app/public/flink.php?m=insertlogo&ajax=1 post中有个参数fimg存在注入。 function minsertlogo global $dbm; $POST'fid' = isset$POST'fid' ? intval$POST'fid' : 0; $POST'fimg'...
mcms最新版SQL注入漏洞(可出任意数据)
简要描述: mcms最新版SQL注入漏洞(可出任意数据) 详细说明: 掌易科技的程序员反应相当快啊,确认漏洞当天就修复以后出新版本了,前面在wooyun提的几个漏洞新版的mcms做了相应的处理,发布了新版v3.1.3.enterprise,再来研究研究。 注入一枚: GET /app/public/gov.shop.order.php?m=view&orderid=1(注意public文件夹是安装系统时取的名字)其中orderid没有过滤,直接进行sql执行。 function mview global $dbm,$result,$V,$C,$orderid;...
mcms最新版SQL注入6枚打包(可出任意数据)
简要描述: mcms最新版SQL注入6枚打包(可出任意数据) 详细说明: 掌易科技的程序员反应相当快啊,确认漏洞当天就修复以后出新版本了,前面在wooyun提的几个漏洞新版的mcms做了相应的处理,发布了新版v3.1.3.enterprise,再来研究研究。 注入一枚:/app/public/flink.php?m=save&ajax=1 post中有6个参数,虽然都经过了xss和sql的过滤,但是过滤的并不完全,我们看看是如何注入的。这里以forder为例进行说明(虽然下面的代码中,forder被intval了,但是不影响注入啊,慢慢看下去吧)。 function msave glob...
mcms最新版SQL注入二枚打包(可出任意数据)
简要描述: mcms最新版SQL注入二枚打包(可出任意数据) 详细说明: 前段时间在wooyun提交了几个mcms的漏洞,以前mcms的版本是v3.1.1.enterprise, WooYun: mcms最新版SQL注入三枚打包(可出任意数据) ,现在都升级到v3.1.3.enterprise了,还是来研究一下mcmsv3.1.3.enterprise吧。 注入一枚:POST...
GeoCore MAX DB Ver. 7.3.3 - Time-Based Blind Injection
No description provided by source. Exploit Title: GeoCore MAX DB Ver. 7.3.3 - Time-Based Blind Injection Official site: http://geodesicsolutions.com Risk Level: High Vendor : http://geodesicsolutions.com Exploit Author: Esac Homepage author : www.iss4m.ma Last Checked: 25/04/2014 +----------+ |...
GeoCore MAX DB 7.3.3 Blind SQL Injection
Exploit Title: GeoCore MAX DB Ver. 7.3.3 - Time-Based Blind Injection Official site: http://geodesicsolutions.com Risk Level: High Demo : http://geodesicsolutions.com/demo/ Exploit Author: Esac Homepage author : www.iss4m.ma Last Checked: 25/04/2014 +----------+ | OVERVIEW | +----------+ GeoCore ...