An attacker can then issue the SQL command through the index.php USERNAME parameter. SQL Injection vulnerability exists in Wuzhi CMS 4.1.0 via the keywords parameter under the coreframe/app/promote/admin/index.php file.Ī SQL injection vulnerability exists in version 8.0 of openSIS when MySQL or MariaDB is used as the application database. SQL Injection vulnerability exists in Wuzhi CMS 4.1.0 via the keywords iparameter under the /coreframe/app/order/admin/card.php file. The Customer Photo Gallery addon before 2.9.4 for PrestaShop is vulnerable to SQL injection.Īn SQL injection vulnerability exists in Wuzhi CMS v4.1.0 via the KeyValue parameter in coreframe/app/order/admin/index.php. Zoho ManageEngine OpManager version 125466 and below is vulnerable to SQL Injection in the getReportData API.
Seagull assistant ver 6.4 password#
The username and password field of login in Lodging Reservation Management System V1 can give access to any user by using SQL injection to bypass authentication. An attacker can exploit the vulnerable "username" parameter in login.php and retrieve sensitive database information, as well as add an administrative user. Using a post request does not sanitize the user input.Īn un-authenticated error-based and time-based blind SQL injection vulnerability exists in Kaushik Jadhav Online Food Ordering Web App 1.0. Using a post request does not sanitize the user input.Īn un-authenticated SQL Injection exists in PuneethReddyHC online-shopping-system-advanced through the /action.php prId parameter. A malicious attacker can retrieve sensitive database information and interact with the database using the vulnerable cid parameter in process_update_profile.php.Īn un-authenticated SQL Injection exists in PuneethReddyHC online-shopping-system-advanced through the /homeaction.php cat_id parameter. The only affected versions are 32 through 06.Ī blind SQL injection vulnerability exists in the Raymart DG / Ahmed Helal Hotel-mgmt-system.
A SQL injection issue was discovered in ThycoticCentrify Secret Server before 07.
0 kommentar(er)
