映射到 CWE-77,CWE-89,CWE-564 的搜索结果 (4697)

CVE-2018-7477(发布:2018-02-28 02:29:00)NM
CVSS7.5

[原文]SQL Injection exists in PHP Scripts Mall School Management Script 3.0.4 via the Username and Password fields to parents/Parent_module/parent_login.php.

CVE-2018-7463(发布:2018-02-26 08:29:00)NM
CVSS7.5

[原文]SQL injection vulnerability in files.php in the "files" component in ASANHAMAYESH CMS 3.4.6 allows a remote attacker to execute arbitrary SQL commands via the "id" parameter.

CVE-2017-9426(发布:2018-02-25 23:29:00)NM
CVSS7.5

[原文]ws.php in the Facetag extension 0.0.3 for Piwigo allows SQL injection via the imageId parameter in a facetag.changeTag or facetag.listTags action.

CVE-2018-6883(发布:2018-02-24 11:29:00)NM
CVSS4.0

[原文]Piwigo before 2.9.3 has SQL injection in admin/tags.php in the administration panel, via the tags array parameter in an admin.php?page=tags request. The attacker must be an administrator.

CVE-2018-7440(发布:2018-02-23 16:29:00)NM
CVSS7.5

[原文]An issue was discovered in Leptonica through 1.75.3. The gplotMakeOutput function allows command injection via a $(command) approach in the gplot rootname argument. This issue exists because of an incomplete fix for CVE-2018-3836.

CVE-2018-6859(发布:2018-02-23 13:29:00)NM
CVSS7.5

[原文]SQL Injection exists in PHP Scripts Mall Schools Alert Management Script 2.0.2 via the Login Parameter.

首页上一页4567891011下一页尾页 第6页 / 共783页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站