Red Hat Security Advisory 2024-10207-03 - A security update is now available for Red Hat JBoss Enterprise Application Platform 7.3 for Red Hat Enterprise Linux 7. Issues addressed include code execution, denial of service, deserialization, server-side request forgery, and remote SQL injection vulnerabilities.
343cb5fb94b59bea978bd46cc9decc908df0d1bd6a97176d1b08655cf893112a
Red Hat Security Advisory 2024-9194-03 - An update for python3.11-PyMySQL is now available for Red Hat Enterprise Linux 9. Issues addressed include a remote SQL injection vulnerability.
b06c0e82d5c14385ecdaf3f54b54eea639160836d39876922e055fb7234b1b0b
Red Hat Security Advisory 2024-9193-03 - An update for python3.12-PyMySQL is now available for Red Hat Enterprise Linux 9. Issues addressed include a remote SQL injection vulnerability.
6de9c7ed1fd52974da32baf4727a7a7f7a02a7a050c58109ef02a42ff151f5ac
Red Hat Security Advisory 2024-8906-03 - A new release is now available for Red Hat Satellite 6.16 for RHEL 8 and 9. Issues addressed include bypass, denial of service, memory leak, remote SQL injection, and traversal vulnerabilities.
8f7f0e644ab20d80d0519a1cbac1645b029d63fd65ac99c9fd4d235c38fd0e25
SmartAgent version 1.1.0 suffers from multiple unauthenticated remote SQL injection vulnerabilities.
454076f23b89f57e45086d97afc09d37ad082fe918f4d6e98b97f0605eece69e
This Metasploit module exploits an unauthenticated SQL injection vulnerability in the WordPress wp-automatic plugin versions prior to 3.92.1 to achieve remote code execution. The vulnerability allows the attacker to inject and execute arbitrary SQL commands, which can be used to create a malicious administrator account. The password for the new account is hashed using MD5. Once the administrator account is created, the attacker can upload and execute a malicious plugin, leading to full control over the WordPress site.
ee57dce5428a24a7b498257e3bc5ee22dadff0bd6e92b4746a779384b38532cb
UP-RESULT PRO version 1.0 suffers from a remote SQL injection vulnerability.
aa5fd3b33671b6f9535a4f177d74b5684187c6772a5f031c7ff6d6753fa030b6
Debian Linux Security Advisory 5795-1 - Cedric Krier discovered that python-sql, a library to write SQL queries in a pythonic way, performed insufficient sanitizing which could result in SQL injection.
e6ae4b806618868271a568847282414626155e507e7451c60c2e232cc3aac875
Helper is an enumerator written in PHP that helps identify directories on webservers that could be targets for things like cross site scripting, local file inclusion, remote shell upload, and remote SQL injection vulnerabilities.
d393a8fbc83a7853129734872e32346a0060fce6cc2859479ba80540d7ca06af
Red Hat Security Advisory 2024-7944-03 - Red Hat OpenShift Container Platform release 4.16.17 is now available with updates to packages and images that fix several bugs and add enhancements. Issues addressed include a remote SQL injection vulnerability.
39c22716a7cbae3fd6ccdd9a0a418d93865e3d57adbd270d0190ec0f3069bcf7
Red Hat Security Advisory 2024-7922-03 - Red Hat OpenShift Container Platform release 4.17.1 is now available with updates to packages and images that fix several bugs and add enhancements. Issues addressed include code execution, denial of service, and remote SQL injection vulnerabilities.
ab5fbc85468735bb743e5a7ae24ea8ce92c6c3d94838ebb176a4b286a7625502
Dolibarr version 20.0.1 suffers from a remote SQL injection vulnerability.
b68670196a13cfe286e8487af4ff4c175267f0b3c6b2117e063ec30584883b78
Bookstore Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
ed877cf678281828e8a763de125306c2d2d4c2a6136ecac65cf4e8c7a8da4566
Peel Shopping versions 2.x and below 3.1 suffer from cross site scripting and remote SQL injection vulnerabilities. This was already noted discovery in 2012 by Cyber-Crystal but this data provides more details.
6b817e9573188b3c5ed4066030a3df4e2c7c9fa853b6fac524420a7c64d3e985
The Top module for PHP-Nuke versions 6.x and below 7.6 suffers from a remote SQL injection vulnerability.
3a92ffde9b535fb265d6a04a22334f353b0ca9559e82557ef8693c270d32986f
MD-Pro version 1.0.76 suffers from remote SQL injection and shell upload vulnerabilities.
b641856919de4d5b0a61bc35a8e30fb6042f78f529af33b52af81ec5d5f73c4e
openSIS version 9.1 suffers from a remote SQL injection vulnerability.
ddd8a61a144743e851f50537eea6c5ff213dbd687c67b18723cb43b3cce02613
Sistem Penyewaan Baju atau Pakaian Berbasis Web version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
6bf344eafaf6c191620e5d4aaa4bda969218a3a332ca545a121590babfb99c51
Simple Music Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
4c3954a6782826d528b447fdf6dbcdb599551c16726f02aaebd273c7dff238b7
SchoolPlus version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
d2074cc8545a505ce1af1c27f59e640d90c6c616fbd247a73c1d9f5cea3d3385
Sample Blog Site version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
61eda3f220bcfb474e61a383d157f7559eaabd352c4d5b1a930e8077c163d977
Restaurant POS version 1.0 suffers from a remote SQL injection vulnerability.
1efe1a827da05e9054d6424d0c6cbeffd061cb7a7b523985c9f815859c5ded7a
Responsive Binary mlm version 3.2.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
7832158bdfb6f25736475de94f715b561965469ceb63c7f42c224430b50843df
Responsive Billing sw System version 3.2.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
a0219dae7fd1734f734512e67150e374366e1b2cf6be0d9351c5231f163d3f5a
Netman 204 version 4.05 suffers from remote SQL injection and unauthenticated password reset vulnerabilities.
9c87235443244a564a179cec6442609a57be8b1bcb3c5c9b1b6a264fe45368e8