sqlmap is an open source command-line automatic SQL injection tool. Its goal is to detect and take advantage of SQL injection vulnerabilities in web applications. Once it detects one or more SQL injections on the target host, the user can choose among a variety of options to perform an extensive back-end database management system fingerprint, retrieve DBMS session user and database, enumerate users, password hashes, privileges, databases, dump entire or user's specified DBMS tables/columns, run his own SQL statement, read or write either text or binary files on the file system, execute arbitrary commands on the operating system, establish an out-of-band stateful connection between the attacker box and the database server via Metasploit payload stager, database stored procedure buffer overflow exploitation or SMB relay attack and more.
ce4b0dc1d2ac37013055fba060747e36Online Ordering System version 1.0 suffers from an unauthenticated remote blind SQL injection vulnerability.
ae0c87eb9112bb1d4f7b47369ebf0038Web Based Quiz System version 1.0 suffers from a remote SQL injection vulnerability.
32e85137f45169204f063d1f69337b0bDoctor Appointment System version 1.0 suffers from remote blind SQL injection vulnerabilities in the firstname and email parameters.
e4344ef4ddc184744e8cd527b2d66da5Doctor Appointment System version 1.0 suffers from remote SQL injection vulnerabilities in the username, comment, and lastname parameters.
6f1b18409918b0c8bb487afb82955590Local Services Search Engine Management System (LSSMES) version 1.0 suffers from blind and error-based authenticated remote SQL injection vulnerabilities.
6051bc313dd2683b38e4b7e7256fd08aCASAP Automated Enrollment System version 1.1 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
f14a5fa36f519bbb6ec4f2ba3a6c5e79Online Catering Reservation System version 1.0 suffers from a remote SQL injection vulnerability.
53624ef7c395d83227fd97f6182a148djSQL Injection is a lightweight application used to find database information from a distant server. jSQL Injection is also part of the official penetration testing distribution Kali Linux and is included in various other distributions like Pentest Box, Parrot Security OS, ArchStrike and BlackArch Linux. This is the source code release.
94ca759744816cccb5adcb61bc26ebf8LayerBB version 1.1.4 suffers from a remote SQL injection vulnerability.
6de2f87bd092a51c9d7160d359e7ae0eeChat version 1.0 suffers from a remote SQL injection vulnerability.
7601ab56af8150320041155a410557b4Online Exam System With Timer version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
932961570021ec25a49daf5395158925Beauty Parlour Management System version 1.0 suffers from a remote SQL injection vulnerability. Original discovery of SQL injection in this version is attributed to Prof. Kailas Patil in June of 2020.
fb2705159935e02c9c63471174893ff6Red Hat Security Advisory 2021-0603-01 - Red Hat Decision Manager is an open source decision management platform that combines business rules management, complex event processing, Decision Model & Notation execution, and Business Optimizer for solving planning problems. It automates business decisions and makes that logic available to the entire business. This release of Red Hat Decision Manager 7.10.0 serves as an update to Red Hat Decision Manager 7.9.1, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include a remote SQL injection vulnerability.
3cb851da470a8ccb90168f60e59028e9Billing Management System version 2.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
a0d091cea086032fdbe67f12e10702f1Red Hat Security Advisory 2021-0600-01 - Red Hat Process Automation Manager is an open source business process management suite that combines process management and decision service management and enables business and IT users to create, manage, validate, and deploy process applications and decision services. This release of Red Hat Process Automation Manager 7.10.0 serves as an update to Red Hat Process Automation Manager 7.9.1, and includes bug fixes and enhancements, which are documented in the Release Notes document linked to in the References. Issues addressed include a remote SQL injection vulnerability.
159710b357810a7aafdf1766517a14d5Online Internship Management System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
851adeeccdb8b3f68ad83bd9dfa34813Doctor Appointment System version 1.0 suffers from a remote SQL injection vulnerability.
33f63dc8551db9643bd780e1c4dc03a8WordPress Supsystic Contact Form plugin version 1.7.5 suffers from remote SQL injection and persistent cross site scripting vulnerabilities.
7e3c423817bad34b034f050f97987684WordPress Supsystic Data Tables Generator plugin version 1.9.96 suffers from remote SQL injection and cross site scripting vulnerabilities.
0de1ad5899f3e0cf987792a9b171f704WordPress Supsystic Membership plugin version 1.4.7 suffers from a remote SQL injection vulnerability.
0baf563c58aab042851f322981d679f2WordPress Supsystic Newsletter plugin version 1.5.5 suffers from a remote SQL injection vulnerability.
c5b66d7eeacb35f3fc7d7670da3646d2WordPress Supsystic Pricing Table plugin version 1.8.7 suffers from remote SQL injection and cross site scripting vulnerabilities.
12f88285cc20a264c2c9a7bcc2fe22caWordPress Welcart e-Commerce plugin version 2.0.0 suffers from a remote SQL injection vulnerability.
d798a021100ef98fec6e0f5cb5040b38WordPress Supsystic Ultimate Maps plugin version 1.1.12 suffers from a remote SQL injection vulnerability.
8f77ba2063df29a69f7b8c061cbdc31b
© 2020 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed