映射到 CWE-77,CWE-89,CWE-564 的搜索结果 (4700)
[原文]SQL Injection exists in the Ek Rishta 2.9 component for Joomla! via the gender, age1, age2, religion, mothertounge, caste, or country parameter.
[原文]SQL Injection exists in the Alexandria Book Library 3.1.2 component for Joomla! via the letter parameter.
[原文]IBM Maximo Asset Management 7.5 and 7.6 is vulnerable to SQL injection. A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM X-Force ID: 138820.
[原文]IBM Financial Transaction Manager 3.0.4 and 3.1.0 for ACH Services for Multi-Platform could allow an authenticated user to execute a specially crafted command that could cause a denial of service. IBM X-Force ID: 138376.
[原文]SQL Injection exists in the CW Tags 2.0.6 component for Joomla! via the searchtext array parameter.
[原文]SQL injection vulnerability in the offset method in the Active Record class in CodeIgniter before 2.2.4 allows remote attackers to execute arbitrary SQL commands via vectors involving the offset variable.