A vulnerability was determined in SourceCodester Best House Rental Management System 1.0. This affects the function delete_house of the file /admin_class.php. Executing manipulation of the argument ID can lead to sql injection. The attack may be performed from remote....
Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’), CWE – 564 – SQL Injection: Hibernate vulnerability in GG Soft Software Services Inc. PaperWork allows Blind SQL Injection, SQL Injection.This issue affects...
SQL injection vulnerability in DIAL’s CentrosNet v2.64. Allows an attacker to retrieve, create, update, and delete databases by sending POST and GET requests with the ‘ultralogin’ parameter in ‘/centrosnet/ultralogin.php’.
Use of password hash with insufficient computational effort issue exists in BUFFALO Wi-Fi router ‘WSR-1800AX4 series’. When WPS is enabled, PIN code and/or Wi-Fi password may be obtained by an attacker.
curl’s code for managing SSH connections when SFTP was done using the wolfSSH powered backend was flawed and missed host verification mechanisms. This prevents curl from detecting MITM attackers and more.
