Red Hat Security Advisory 2022-8506-01 - Red Hat Satellite is a systems management tool for Linux-based infrastructure. It allows for provisioning, remote management, and monitoring of multiple Linux deployments with a single centralized tool. Issues addressed include code execution, cross site scripting, denial of service, remote SQL injection, and traversal vulnerabilities.
2d5699b272bf62135c49021ecfc5e70e3ef3e624c94ce2a33e3c23d5cd96ba6d
Revenue Collection System version 1.0 suffers from an unauthenticated SQL injection vulnerability in step1.php that allows remote attackers to write a malicious PHP file to disk. The resulting file can then be accessed within the /rates/admin/DBbackup directory. This script will write the malicious PHP file to disk, issue a user-defined command, then retrieve the result of that command.
b41c4f6c71ea1156cfd52b2bd3c354cdb2fc0372d5b22d463c64b50c55b777c0
Debian Linux Security Advisory 5279-1 - Several vulnerabilities were discovered in Wordpress, a web blogging tool. They allowed remote attackers to perform SQL injection, create open redirects, bypass authorization access, or perform Cross-Site Request Forgery (CSRF) or Cross-Site Scripting (XSS) attacks.
341ee59a0eda06f9f4d0a55d3d0dcfde3def67460f959fbb244cede42273627d
Simmeth System GmbH Supplier Manager (Lieferantenmanager) versions prior to 5.6 suffer from authentication bypass, code execution, cross site scripting, information leakage, remote SQL injection, and various other vulnerabilities.
6eddce047a1f5ab31ff59fc32cdd934d9a0dbd6474090fe26968d79a7d77daf2
Senayan Library Management System version 9.5.0 suffers from a remote SQL injection vulnerability.
5b98654c16fb65927d8c0c10149267d90cf2f36678335ed7163311ea33ba96d1
Red Hat Security Advisory 2022-7313-01 - Red Hat Advanced Cluster Management for Kubernetes 2.6.2 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges that administrators and site reliability engineers face as they work across a range of public and private cloud environments. Issues addressed include denial of service and remote SQL injection vulnerabilities.
f088aaac528bedbfa16105a558b51c712895ea3407b41e433e40d884e498110f
Red Hat Security Advisory 2022-7276-01 - Red Hat Advanced Cluster Management for Kubernetes 2.4.8 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges that administrators and site reliability engineers face as they work across a range of public and private cloud environments. Clusters and applications are all visible and managed from a single console—with security policy built in. This advisory contains the container images for Red Hat Advanced Cluster Management for Kubernetes, which fix several bugs. Issues addressed include denial of service, server-side request forgery, and remote SQL injection vulnerabilities.
7ac9e1c7f562a5f00c685c3f4a883358404bdb691f54031e1c202dfc1880d591
Simple Cold Storage Management System version 1.0 suffers from a remote SQL injection vulnerability.
fb5d717ac9eec8802533869820e2477f518070b4c89dbd42ffbacdd6ba37b3e3
Red Hat Security Advisory 2022-6954-01 - Red Hat Advanced Cluster Management for Kubernetes 2.5.3 images Red Hat Advanced Cluster Management for Kubernetes provides the capabilities to address common challenges that administrators and site reliability engineers face as they work across a range of public and private cloud environments. Clusters and applications are all visible and managed from a single console—with security policy built in. This advisory contains the container images for Red Hat Advanced Cluster Management for Kubernetes, which fix security issues and several bugs. Issues addressed include denial of service and remote SQL injection vulnerabilities.
fda3772db47bbb97412abbca356027a1b9d45258ea5b87563a25fd016a40589a
Debian Linux Security Advisory 5254-1 - Multiple security issues were found in Django, a Python web development framework, which could result in denial of service, SQL injection or cross-site scripting.
f1deaa074be2780bc47f540868f469aef9215c48a81c548946be8c4d1bf75ee6
Joomla OSG Courts Reservation extension version 1.4.9 suffers from a remote SQL injection vulnerability.
ca209e0069c5cc7fa81a80ace3a60142ef8f4a75061b70d9f0c0dff799781875
Online Shopping System Advanced version 1.0 suffers from multiple remote SQL injection vulnerabilities.
414cc67f4209b57356f9ca16624a2e64af6e26d684e648648322df2fd6099299
WordPress Zephyr Project Manager plugin version 3.2.42 suffers from a remote SQL injection vulnerability.
1d1653f73858b8cf2dded02c8ee96ddc66f0140ba1976aa8aaf96c82cf1cb512
Canteen Management version 1.0-2022 suffers from a remote SQL injection vulnerability.
2d4328d6484fdeed0350fcb19dc9fe4f3d5499e3bb9f44d105865efdc3315733
Joomla MarvikShop ShoppingCart extension version 3.4 suffers from a remote SQL injection vulnerability.
af41f883caada44f1dff993f8717a577f62a5db925c277a7fdd1059acaa38172
Joomla JKassa ShoppingCart extension version 2.0.0 suffers from a remote SQL injection vulnerability.
1d286657a6509ab45feb55b36b0bc01dd8f56873e7fc43f5845bda2adfc98272
Joomla JUX Charity Hub extension version 1.0.4 suffers from a remote SQL injection vulnerability.
dd85f026aa28d0d837d9b8f6e68a55f63645f20a0ae801b2099b5ca88441771b
ZKSecurity BIO version 4.1.2 suffers from a remote SQL injection vulnerability that can allow for remote code execution.
2f5ddba7cf7e3024ddc6ad5a39968b8c149a652831c65c828f1565ea29f0e84d
Joomla MyMuse extension version 4.3.0 suffers from a remote SQL injection vulnerability.
5deedb4e9c6f4ba784330c0618c0b611b0d2f5c953c41021281d833c3fab451c
Joomla JS Jobs Pro extension version 1.3.6 suffers from a remote SQL injection vulnerability.
1660f7d887aa22210db0f906f32132f8374ecb3142a0efecf10ad4eff14b83fa
Joomla AdsManager extension version 3.2.0 suffers from a remote SQL injection vulnerability.
d94efabfad9904e592ec82124c03316f4ce8b774ae57879750a98a1445884262
Online Examination System version 1.0 suffers from a remote SQL injection vulnerability.
dba8c93e85cd1df6195d39d4a331df0a884b158c86b28ffa00bd3dea43e7b6ba
Food Ordering Management System version 1.0 suffers from a remote SQL injection vulnerability.
1be2c696b62c411f0a88c3819a1d4653e0f042e7aa59018ccd5596555ca02a4b
Online Diagnostic Lab Management System version 1.0 remote exploit that bypasses login with SQL injection and then uploads a shell.
a9a666adc9b5791a812164167d20c4ced022f91eed35188667143b4e7b0ee94e
WorkOrder CMS version 0.1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass.
1be273ff725163819b2cfa9a453104d943c26788eac55ddd53d75e0f3feec9d8