Pre-School Enrollment System visit.php file SQL Injection Vulnerability

Pre-School Enrollment System is a web-based preschool enrollment system. The Pre-School Enrollment System suffers from a SQL injection vulnerability that originates from the lack of validation of an externally-entered SQL statement in the parameter gname in the file /visit.php. An attacker can...

CVE-2025-6322

The CVE-2025-6322 entry concerns PHPGurukul Pre-School Enrollment System v1.0 where the vulnerability resides in /visit.php via the gname parameter, enabling SQL injection. Remote attacker access is possible and public exploits exist. Public-facing sources indicate no official patch/version detai...

XOOPS Rha7 Downloads Module Visit.PHP SQL注入漏洞

XOOPS Rha7 Downloads是一款基于PHP的WEB应用程序。 XOOPS Rha7 Downloads不正确过滤用户提交的输入，远程攻击者可以利用漏洞进行SQL注入攻击，可获得敏感信息。 问题是'Visit.PHP'脚本对用户提交的'postid'参数缺少过滤，提交恶意SQL代码作为参数数据，可导致更改原来的SQL逻辑，获得敏感信息。 Xoops Rha7 Downloads Module 1.0 目前没有解决方案提供： http://www.xoops.org/ !/usr/bin/perl Script Name: XOOPS Module Rha7 Downloads...

CVE-2007-1960

SQL injection vulnerability in visit.php in the Rha7 Downloads rha7downloads 1.0 module for XOOPS, and possibly other versions up to 1.10, allows remote attackers to execute arbitrary SQL commands via the lid parameter...

XOOPS Module Rha7 Downloads 1.0 (visit.php) SQL Injection Exploit

No description provided by source. !/usr/bin/perl Script Name: XOOPS Module Rha7 Downloads 1.0 visit.php Remote BLIND SQL Injection Exploit Coded by : ajann Author : ajann Contact : : S.Page : http://www.rha7.com/ , www.xoops.org/modules/repository/singlefile.php?cid=92&lid=1525 $$ : Free .. :...