Www zestyfind com cgi bin search cgi keywords dating
A SQL injection vulnerability in the reporting component of Avaya Control Manager could allow an unauthenticated attacker to execute arbitrary SQL commands and retrieve sensitive data related to other users on the system.
Affected versions of Avaya Control Manager include 7.x and 8.0.x versions prior to 22.214.171.124.
A successful exploit could allow the attacker to view or modify entries in some database tables, affecting the integrity of the data.
An issue was discovered in Zoho Manage Engine Application Manager through 14.2.
There is a SQL Injection vulnerability in jsp/New Threshold via the resourceid parameter.
Therefore, a low-authority user can gain the authority of SYSTEM on the server.
inxedu through 2018-12-24 has a SQL Injection vulnerability that can lead to information disclosure via the delete Faveorite/ PATH_INFO. User Controller#delete Favorite (aka delete Favorite in com/inxedu/os/edu/controller/user/User Controller.java), where course Favorites Service.delete Course Favorites By Id is mishandled during use of My Batis.
NOTE: User has a spelling variation in an annotation: a @Request Mapping("/delete Faveorite/") line followed by a "public Model And View delete Favorite" line.
A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. IBM Pure Application System 126.96.36.199 through 188.8.131.52 is vulnerable to SQL injection.A remote attacker could send specially-crafted SQL statements, which could allow the attacker to view, add, modify or delete information in the back-end database. Pivotal Concourse version 5.0.0, contains an API that is vulnerable to SQL injection.An Concourse resource can craft a version identifier that can carry a SQL injection payload to the Concourse server, allowing the attacker to read privileged data.EARCLINK ESPCMS-P8 has SQL injection in the install_pack/index.php? install_pack/espcms_public/espcms_may allow retrieving sensitive information from the ESPCMS database.IBM Contract Management 10.1.0 through 10.1.3 and IBM Emptoris Spend Analysis 10.1.0 through 10.1.3 is vulnerable to SQL injection.